Lucene search

K
freebsdFreeBSD7289187B-66A5-11DA-99F6-00123FFE8333
HistoryDec 05, 2005 - 12:00 a.m.

trac -- search module SQL injection vulnerability

2005-12-0500:00:00
vuxml.freebsd.org
14

Secunia reports:

A vulnerability has been reported in Trac, which
can be exploited by malicious people to conduct SQL
injection attacks.
Some unspecified input passed in the search module
isn’t properly sanitised before being used in a SQL
query. This can be exploited to manipulate SQL
queries by injecting arbitrary SQL code.

OSVersionArchitecturePackageVersionFilename
FreeBSDanynoarchtrac<Β 0.9.2UNKNOWN