CVE-2005-2007

EPSS 1.3%

發布日:2005/6/19修改日:2026/4/28

描述

Directory traversal vulnerability in Edgewall Trac 0.8.3 and earlier allows remote attackers to read or write arbitrary files via a .. (dot dot) in the id parameter to the (1) upload or (2) attachment scripts.

受影響套件(1)

Debian/tracfrom 0, < 0.8.4-1

參考連結(1)

ADVISORYhttps://security-tracker.debian.org/tracker/CVE-2005-2007