Описание
Directory traversal vulnerability in Edgewall Trac 0.8.3 and earlier allows remote attackers to read or write arbitrary files via a .. (dot dot) in the id parameter to the (1) upload or (2) attachment scripts.
Пакеты
| Пакет | Статус | Версия исправления | Релиз | Тип |
|---|---|---|---|---|
| trac | fixed | 0.8.4-1 | package | |
| trac | fixed | 0.8.1-3sarge1 | sarge | package |
EPSS
Процентиль: 79%
0.01301
Низкий
Связанные уязвимости
nvd
около 20 лет назад
Directory traversal vulnerability in Edgewall Trac 0.8.3 and earlier allows remote attackers to read or write arbitrary files via a .. (dot dot) in the id parameter to the (1) upload or (2) attachment scripts.
github
больше 3 лет назад
Directory traversal vulnerability in Edgewall Trac 0.8.3 and earlier allows remote attackers to read or write arbitrary files via a .. (dot dot) in the id parameter to the (1) upload or (2) attachment scripts.
EPSS
Процентиль: 79%
0.01301
Низкий