Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
edgewall software trac 0.8.3 vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2005-4065
SQL injection vulnerability in the search module in Edgewall Trac prior to 0.9.2 allows remote malicious users to execute arbitrary SQL commands via unknown vectors.
Edgewall Software Trac 0.8.3
Edgewall Software Trac 0.8.4
Edgewall Software Trac 0.7.1
Edgewall Software Trac 0.8.1
Edgewall Software Trac 0.9
Edgewall Software Trac 0.9.1
1 EDB exploit
NA
CVE-2005-2147
Trac prior to 0.8.4 allows remote malicious users to read or upload arbitrary files via a full pathname in the id parameter to the (1) upload or (2) attachment viewer scripts.
Edgewall Software Trac 0.7.1
Edgewall Software Trac 0.8.1
Edgewall Software Trac 0.8.3
NA
CVE-2005-2007
Directory traversal vulnerability in Edgewall Trac 0.8.3 and previous versions allows remote malicious users to read or write arbitrary files via a .. (dot dot) in the id parameter to the (1) upload or (2) attachment scripts.
Edgewall Software Trac 0.5
Edgewall Software Trac 0.5.1
Edgewall Software Trac 0.5.2
Edgewall Software Trac 0.6
Edgewall Software Trac 0.8.1
Edgewall Software Trac 0.8.2
Edgewall Software Trac 0.8.3
Edgewall Software Trac 0.7
Edgewall Software Trac 0.8
Edgewall Software Trac 0.6.1
Edgewall Software Trac 0.7.1
NA
CVE-2005-3980
SQL injection vulnerability in the ticket query module in Edgewall Trac 0.9 and possibly earlier allows remote malicious users to execute arbitrary SQL commands via the group parameter.
Edgewall Software Trac 0.8
Edgewall Software Trac 0.8.1
Edgewall Software Trac 0.6
Edgewall Software Trac 0.6.1
Edgewall Software Trac 0.8.4
Edgewall Software Trac 0.9
Edgewall Software Trac 0.7
Edgewall Software Trac 0.7.1
Edgewall Software Trac 0.9b1
Edgewall Software Trac 0.9b2
Edgewall Software Trac 0.5.1
Edgewall Software Trac 0.5.2
Edgewall Software Trac 0.50.9
Edgewall Software Trac 0.8.2
Edgewall Software Trac 0.8.3
1 EDB exploit
NA
CVE-2006-5878
Cross-site request forgery (CSRF) vulnerability in Edgewall Trac 0.10 and previous versions allows remote malicious users to perform unauthorized actions as other users via unknown vectors.
Edgewall Software Trac 0.7
Edgewall Software Trac 0.7.1
Edgewall Software Trac 0.9.1
Edgewall Software Trac 0.9.2
Edgewall Software Trac 0.9.3
Edgewall Software Trac 0.5
Edgewall Software Trac 0.5.1
Edgewall Software Trac 0.8
Edgewall Software Trac 0.8.1
Edgewall Software Trac 0.9.4
Edgewall Software Trac 0.9.5
Edgewall Software Trac 0.5.2
Edgewall Software Trac 0.50.9
Edgewall Software Trac 0.8.2
Edgewall Software Trac 0.8.3
Edgewall Software Trac 0.9.6
Edgewall Software Trac 0.9b1
Edgewall Software Trac 0.6
Edgewall Software Trac 0.6.1
Edgewall Software Trac 0.8.4
Edgewall Software Trac 0.9
Edgewall Software Trac 0.9b2
NA
CVE-2008-3328
Cross-site scripting (XSS) vulnerability in the wiki engine in Trac prior to 0.10.5 allows remote malicious users to inject arbitrary web script or HTML via unknown vectors.
Edgewall Software Trac 0.10.3.1
Edgewall Software Trac 0.5
Edgewall Software Trac 0.8
Edgewall Software Trac 0.8.1
Edgewall Software Trac 0.9.3
Edgewall Software Trac 0.9.4
Edgewall Software Trac 0.5.1
Edgewall Software Trac 0.5.2
Edgewall Software Trac 0.8.2
Edgewall Software Trac 0.8.3
Edgewall Software Trac 0.9.5
Edgewall Software Trac 0.9.6
Edgewall Software Trac 0.10
Edgewall Software Trac 0.10.1
Edgewall Software Trac 0.50.9
Edgewall Software Trac 0.6
Edgewall Software Trac 0.8.4
Edgewall Software Trac 0.9
Edgewall Software Trac 0.9b1
Edgewall Software Trac 0.9b2
Edgewall Software Trac 0.10.2
Edgewall Software Trac 0.10.3
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-3201
CVE-2024-4779
CVE-2024-35090
CVE-2024-5084
hard-coded
CVE-2024-4985
HTML injection
CVE-2024-33655
local file inclusion
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started