Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
trac trac vulnerabilities and exploits
(subscribe to this query)
10
CVSSv2
CVE-2007-1406
Trac prior to 0.10.3.1 does not send a Content-Disposition HTTP header specifying an attachment in certain "unsafe" situations, which has unknown impact and remote attack vectors.
Edgewall Software Trac 0.10.3
Edgewall Software Trac 0.10
Edgewall Software Trac 0.10.2
Edgewall Software Trac 0.10.1
7.8
CVSSv2
CVE-2011-3192
The byterange filter in the Apache HTTP Server 1.3.x, 2.0.x up to and including 2.0.64, and 2.2.x up to and including 2.2.19 allows remote malicious users to cause a denial of service (memory and CPU consumption) via a Range header that expresses multiple overlapping ranges, as e...
Apache Http Server
Suse Linux Enterprise Server 11
Opensuse Opensuse 11.4
Opensuse Opensuse 11.3
Suse Linux Enterprise Software Development Kit 10
Suse Linux Enterprise Server 10
Suse Linux Enterprise Software Development Kit 11
Canonical Ubuntu Linux 10.10
Canonical Ubuntu Linux 11.04
Canonical Ubuntu Linux 8.04
Canonical Ubuntu Linux 10.04
2 EDB exploits
1 Nmap script
18 Github repositories
3 Articles
7.5
CVSSv2
CVE-2009-4405
Multiple unspecified vulnerabilities in Trac prior to 0.11.6 have unknown impact and attack vectors, possibly related to (1) "policy checks in report results when using alternate formats" or (2) a "check for the 'raw' role that is missing in docutils <...
Edgewall Trac 0.10
Edgewall Trac 0.5
Edgewall Trac 0.10.3
Edgewall Trac 0.10.4
Edgewall Trac 0.5.1
Edgewall Trac 0.11.4
Edgewall Trac 0.6.1
Edgewall Trac 0.9.3
Edgewall Trac 0.10.3.1
Edgewall Trac 0.8.4
Edgewall Trac 0.8.2
Edgewall Trac 0.11.1
Edgewall Trac 0.10.5
Edgewall Trac 0.9.6
Edgewall Trac 0.6
Edgewall Trac 0.11.5
Edgewall Trac 0.10.2
Edgewall Trac 0.11.3
Edgewall Trac 0.8
Edgewall Trac 0.8.3
Edgewall Trac
Edgewall Trac 0.11
7.5
CVSSv2
CVE-2008-5646
Unspecified vulnerability in Trac prior to 0.11.2 allows malicious users to cause a denial of service via unknown attack vectors related to "certain wiki markup."
Trac Trac 0.8
Trac Trac 0.10.4
Trac Trac 0.9
Trac Trac 0.8.3
Trac Trac 0.5.2
Trac Trac 0.10.5
Trac Trac 0.9.3
Trac Trac 0.10
Trac Trac 0.6
Trac Trac 0.5.1
Trac Trac
Trac Trac 0.7.1
Trac Trac 0.5
Trac Trac 0.8.2
Trac Trac 0.9.4
Trac Trac 0.9.6
Trac Trac 0.6.1
Trac Trac 0.10.3.1
Trac Trac 0.9.1
Trac Trac 0.10.3
Trac Trac 0.8.4
Trac Trac 0.10.1
7.5
CVSSv2
CVE-2006-5878
Cross-site request forgery (CSRF) vulnerability in Edgewall Trac 0.10 and previous versions allows remote malicious users to perform unauthorized actions as other users via unknown vectors.
Edgewall Software Trac 0.8.4
Edgewall Software Trac 0.7.1
Edgewall Software Trac 0.6.1
Edgewall Software Trac 0.8
Edgewall Software Trac 0.5
Edgewall Software Trac 0.6
Edgewall Software Trac 0.8.2
Edgewall Software Trac 0.9.1
Edgewall Software Trac 0.9b1
Edgewall Software Trac 0.5.2
Edgewall Software Trac 0.9.3
Edgewall Software Trac 0.5.1
Edgewall Software Trac 0.8.3
Edgewall Software Trac 0.9.6
Edgewall Software Trac 0.9
Edgewall Software Trac 0.9b2
Edgewall Software Trac 0.9.4
Edgewall Software Trac
Edgewall Software Trac 0.8.1
Edgewall Software Trac 0.9.2
Edgewall Software Trac 0.9.5
Edgewall Software Trac 0.7
7.5
CVSSv2
CVE-2005-4065
SQL injection vulnerability in the search module in Edgewall Trac prior to 0.9.2 allows remote malicious users to execute arbitrary SQL commands via unknown vectors.
Edgewall Software Trac 0.8.4
Edgewall Software Trac 0.7.1
Edgewall Software Trac 0.9.1
Edgewall Software Trac 0.8.3
Edgewall Software Trac 0.9
Edgewall Software Trac 0.8.1
1 EDB exploit
7.5
CVSSv2
CVE-2005-3980
SQL injection vulnerability in the ticket query module in Edgewall Trac 0.9 and possibly earlier allows remote malicious users to execute arbitrary SQL commands via the group parameter.
Edgewall Software Trac 0.8.4
Edgewall Software Trac 0.7.1
Edgewall Software Trac 0.6.1
Edgewall Software Trac 0.8
Edgewall Software Trac 0.6
Edgewall Software Trac 0.8.2
Edgewall Software Trac 0.9b1
Edgewall Software Trac 0.5.2
Edgewall Software Trac 0.5.1
Edgewall Software Trac 0.8.3
Edgewall Software Trac 0.9
Edgewall Software Trac 0.9b2
Edgewall Software Trac 0.8.1
Edgewall Software Trac 0.7
Edgewall Software Trac 0.50.9
1 EDB exploit
6.8
CVSSv2
CVE-2010-0394
PyGIT.py in the Trac Git plugin (trac-git) prior to 0.0.20080710-3+lenny1 and prior to 0.0.20090320-1 on Debian GNU/Linux, when enabled in Trac, allows remote malicious users to execute arbitrary commands via shell metacharacters in a crafted HTTP query that is used to generate a...
Nanosleep Trac-git
6.8
CVSSv2
CVE-2006-3695
Trac prior to 0.9.6 does not disable the "raw" or "include" commands when providing untrusted users with restructured text (reStructuredText) functionality from docutils, which allows remote malicious users to read arbitrary files, perform cross-site scripting...
Edgewall Software Trac
6.4
CVSSv2
CVE-2005-2147
Trac prior to 0.8.4 allows remote malicious users to read or upload arbitrary files via a full pathname in the id parameter to the (1) upload or (2) attachment viewer scripts.
Edgewall Software Trac 0.7.1
Edgewall Software Trac 0.8.3
Edgewall Software Trac 0.8.1
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-28995
CVE-2024-36680
CVE-2024-35537
unauthorized
CVE-2024-21518
CVE-2024-37673
cross-site scripting
SSRF
CVE-2024-6241
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
NEXT »