Vendor
Trac
Products
1
CVEs
3
Across products
3
Status
Private
Products
1- 3 CVEs
Recent CVEs
3| CVE | Vendor / Product | Sev | Risk | CVSS | EPSS | KEV | Published | Description |
|---|---|---|---|---|---|---|---|---|
| CVE-2010-5108 | 0.00 | — | 0.00 | Nov 13, 2019 | Trac 0.11.6 does not properly check workflow permissions before modifying a ticket. This can be exploited by an attacker to change the status and resolution of tickets without having proper permissions. | |||
| CVE-2008-5647 | 0.00 | — | 0.00 | Dec 17, 2008 | Unspecified vulnerability in the HTML sanitizer filter in Trac before 0.11.2 allows attackers to conduct phishing attacks via unknown attack vectors. | |||
| CVE-2008-5646 | 0.00 | — | 0.00 | Dec 17, 2008 | Unspecified vulnerability in Trac before 0.11.2 allows attackers to cause a denial of service via unknown attack vectors related to "certain wiki markup." |
- CVE-2010-5108Nov 13, 2019risk 0.00cvss —epss 0.00
Trac 0.11.6 does not properly check workflow permissions before modifying a ticket. This can be exploited by an attacker to change the status and resolution of tickets without having proper permissions.
- CVE-2008-5647Dec 17, 2008risk 0.00cvss —epss 0.00
Unspecified vulnerability in the HTML sanitizer filter in Trac before 0.11.2 allows attackers to conduct phishing attacks via unknown attack vectors.
- CVE-2008-5646Dec 17, 2008risk 0.00cvss —epss 0.00
Unspecified vulnerability in Trac before 0.11.2 allows attackers to cause a denial of service via unknown attack vectors related to "certain wiki markup."