Описание
Trac Open Redirect vulnerability
Open redirect vulnerability in the search script in Trac before 0.10.5 allows remote attackers to redirect users to arbitrary web sites and conduct phishing attacks via a URL in the q parameter, possibly related to the quickjump function.
Ссылки
- https://nvd.nist.gov/vuln/detail/CVE-2008-2951
- https://exchange.xforce.ibmcloud.com/vulnerabilities/44043
- https://github.com/pypa/advisory-database/tree/main/vulns/trac/PYSEC-2008-4.yaml
- https://www.redhat.com/archives/fedora-package-announce/2008-July/msg01261.html
- https://www.redhat.com/archives/fedora-package-announce/2008-July/msg01270.html
- http://holisticinfosec.org/content/view/72/45
- http://trac.edgewall.org/wiki/ChangeLog
Пакеты
trac
< 0.10.5
0.10.5
Связанные уязвимости
Open redirect vulnerability in the search script in Trac before 0.10.5 allows remote attackers to redirect users to arbitrary web sites and conduct phishing attacks via a URL in the q parameter, possibly related to the quickjump function.
Open redirect vulnerability in the search script in Trac before 0.10.5 allows remote attackers to redirect users to arbitrary web sites and conduct phishing attacks via a URL in the q parameter, possibly related to the quickjump function.
Open redirect vulnerability in the search script in Trac before 0.10.5 ...