CVE-2005-2007

2005-06-19T00:00:00
ID CVE-2005-2007
Type cve
Reporter NVD
Modified 2008-09-05T16:50:38

Description

Directory traversal vulnerability in Edgewall Trac 0.8.3 and earlier allows remote attackers to read or write arbitrary files via a .. (dot dot) in the id parameter to the (1) upload or (2) attachment scripts.