CVE-2005-2147

2005-07-06T00:00:00
ID CVE-2005-2147
Type cve
Reporter NVD
Modified 2008-09-05T16:51:00

Description

Trac before 0.8.4 allows remote attackers to read or upload arbitrary files via a full pathname in the id parameter to the (1) upload or (2) attachment viewer scripts.