Lucene search
HistoryJul 06, 2005 - 4:00 a.m.
CVE-2005-2147
cve-2005-2147
trac
security vulnerability
file upload
remote attack
6.7 Medium
AI Score
Confidence
Low
6.4 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:L/Au:N/C:P/I:P/A:N
0.002 Low
EPSS
Percentile
60.5%
Trac before 0.8.4 allows remote attackers to read or upload arbitrary files via a full pathname in the id parameter to the (1) upload or (2) attachment viewer scripts.
Related
openvas
openvas
FreeBSD Ports: trac
2008-09-04 00:00:00
Debian: Security Advisory (DSA-739-1)
2008-01-17 00:00:00
Debian Security Advisory DSA 739-1 (trac)
2008-01-17 00:00:00
debiancve
debiancve
CVE-2005-2147
2005-07-06 04:00:00
nessus
nessus
FreeBSD : trac -- file upload/download vulnerability (b02c1d80-e1bb-11d9-b875-0001020eed82)
2005-07-13 00:00:00
Debian DSA-739-1 : trac - missing input sanitising
2005-07-06 00:00:00
ubuntucve
ubuntucve
CVE-2005-2147
2005-07-06 00:00:00
6.7 Medium
AI Score
Confidence
Low
6.4 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:L/Au:N/C:P/I:P/A:N
0.002 Low
EPSS
Percentile
60.5%
Related for CVE-2005-2147