Trac Ticket Validation Security Bypass Vulnerability Network Vulnerability

Summary

Trac is prone to a security-bypass vulnerability. Attackers can exploit this issue to bypass certain security restrictions and perform unauthorized actions. Versions prior to Trac 0.11.7 are vulnerable.

Solution

The vendor has released an update. Please see the references for details.

References

http://trac.edgewall.org/
http://www.securityfocus.com/bid/39040

Updated on 2017-03-28

Severity

Classification

CVSS	Base Score: 5.0 AV:N/AC:L/Au:N/C:N/I:P/A:N

Related Vulnerabilities

Apache 'Options' and 'AllowOverride' Directives Security Bypass Vulnerability
Apache Tomcat Hash Collision Denial Of Service Vulnerability
Apache Traffic Server HTTP TRACE Request Remote DoS Vulnerability
Authentication bypassing in Lotus Domino
IBM WebSphere Application Server Multiple Vulnerabilities

Take action and discover your vulnerabilities