CVE-2005-2147

Опубликовано: 06 июл. 2005

Источник: debian

Описание

Trac before 0.8.4 allows remote attackers to read or upload arbitrary files via a full pathname in the id parameter to the (1) upload or (2) attachment viewer scripts.

Пакеты

Пакет	Статус	Версия исправления	Релиз	Тип
trac	fixed	0.8.4-1		package
trac	fixed	0.8.1-3sarge1	sarge	package

Связанные уязвимости

CVE-2005-2147

ubuntu

около 20 лет назад

Trac before 0.8.4 allows remote attackers to read or upload arbitrary files via a full pathname in the id parameter to the (1) upload or (2) attachment viewer scripts.

CVE-2005-2147

nvd

около 20 лет назад

Trac before 0.8.4 allows remote attackers to read or upload arbitrary files via a full pathname in the id parameter to the (1) upload or (2) attachment viewer scripts.

GHSA-r7fq-xqxm-w3x6

github

больше 3 лет назад

Trac before 0.8.4 allows remote attackers to read or upload arbitrary files via a full pathname in the id parameter to the (1) upload or (2) attachment viewer scripts.