Описание
SQL injection vulnerability in the ticket query module in Edgewall Trac 0.9 and possibly earlier allows remote attackers to execute arbitrary SQL commands via the group parameter.
Ссылки
- PatchVendor Advisory
- ExploitPatchVendor Advisory
- ExploitPatch
- PatchVendor Advisory
- ExploitPatchVendor Advisory
- ExploitPatch
Уязвимые конфигурации
Конфигурация 1
Одно из
cpe:2.3:a:edgewall_software:trac:0.5.1:*:*:*:*:*:*:*
cpe:2.3:a:edgewall_software:trac:0.5.2:*:*:*:*:*:*:*
cpe:2.3:a:edgewall_software:trac:0.6:*:*:*:*:*:*:*
cpe:2.3:a:edgewall_software:trac:0.6.1:*:*:*:*:*:*:*
cpe:2.3:a:edgewall_software:trac:0.7:*:*:*:*:*:*:*
cpe:2.3:a:edgewall_software:trac:0.7.1:*:*:*:*:*:*:*
cpe:2.3:a:edgewall_software:trac:0.8:*:*:*:*:*:*:*
cpe:2.3:a:edgewall_software:trac:0.8.1:*:*:*:*:*:*:*
cpe:2.3:a:edgewall_software:trac:0.8.2:*:*:*:*:*:*:*
cpe:2.3:a:edgewall_software:trac:0.8.3:*:*:*:*:*:*:*
cpe:2.3:a:edgewall_software:trac:0.8.4:*:*:*:*:*:*:*
cpe:2.3:a:edgewall_software:trac:0.9:*:*:*:*:*:*:*
cpe:2.3:a:edgewall_software:trac:0.9b1:*:*:*:*:*:*:*
cpe:2.3:a:edgewall_software:trac:0.9b2:*:*:*:*:*:*:*
cpe:2.3:a:edgewall_software:trac:0.50.9:*:*:*:*:*:*:*
EPSS
Процентиль: 86%
0.03174
Низкий
7.5 High
CVSS2
Дефекты
NVD-CWE-Other
Связанные уязвимости
debian
почти 20 лет назад
SQL injection vulnerability in the ticket query module in Edgewall Tra ...
github
больше 3 лет назад
SQL injection vulnerability in the ticket query module in Edgewall Trac 0.9 and possibly earlier allows remote attackers to execute arbitrary SQL commands via the group parameter.
EPSS
Процентиль: 86%
0.03174
Низкий
7.5 High
CVSS2
Дефекты
NVD-CWE-Other