VYPR
Medium severity6.1NVD Advisory· Published Jul 27, 2008· Updated Jun 16, 2026

CVE-2008-2951

CVE-2008-2951

Description

Open redirect vulnerability in the search script in Trac before 0.10.5 allows remote attackers to redirect users to arbitrary web sites and conduct phishing attacks via a URL in the q parameter, possibly related to the quickjump function.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected packages

Versions sourced from the GitHub Security Advisory.

PackageAffected versionsPatched versions
tracPyPI
< 0.10.50.10.5

Affected products

4
  • cpe:2.3:a:edgewall:trac:*:*:*:*:*:*:*:*
    Range: <0.10.5
  • cpe:2.3:o:fedoraproject:fedora:8:*:*:*:*:*:*:*+ 1 more
    • cpe:2.3:o:fedoraproject:fedora:8:*:*:*:*:*:*:*
    • cpe:2.3:o:fedoraproject:fedora:9:*:*:*:*:*:*:*
  • ghsa-coords
    Range: < 0.10.5

Patches

Vulnerability mechanics

References

12

News mentions

0

No linked articles in our index yet.