Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
7.5
CVE-2010-5108
- EPSS 0.31%
- Published 13.11.2019 23:15:10
- Last modified 21.11.2024 01:22:31
Trac 0.11.6 does not properly check workflow permissions before modifying a ticket. This can be exploited by an attacker to change the status and resolution of tickets without having proper permissions.
7.5
CVE-2009-4405
- EPSS 0.57%
- Published 23.12.2009 21:30:00
- Last modified 09.04.2025 00:30:58
Multiple unspecified vulnerabilities in Trac before 0.11.6 have unknown impact and attack vectors, possibly related to (1) "policy checks in report results when using alternate formats" or (2) a "check for the 'raw' role that is missing in docutils <...
6.1
CVE-2008-2951
- EPSS 0.6%
- Published 27.07.2008 22:41:00
- Last modified 09.04.2025 00:30:58
Open redirect vulnerability in the search script in Trac before 0.10.5 allows remote attackers to redirect users to arbitrary web sites and conduct phishing attacks via a URL in the q parameter, possibly related to the quickjump function.
1