Information on source package trac

Available versions

ReleaseVersion
stretch1.2+dfsg-1
buster1.2.3+dfsg-1

Resolved issues

BugDescription
CVE-2010-5108Trac 0.11.6 does not properly check workflow permissions before modify ...
CVE-2009-4405Multiple unspecified vulnerabilities in Trac before 0.11.6 have unknow ...
CVE-2008-5647Unspecified vulnerability in the HTML sanitizer filter in Trac before ...
CVE-2008-5646Unspecified vulnerability in Trac before 0.11.2 allows attackers to ca ...
CVE-2008-3328Cross-site scripting (XSS) vulnerability in the wiki engine in Trac be ...
CVE-2008-2951Open redirect vulnerability in the search script in Trac before 0.10.5 ...
CVE-2007-1406Trac before 0.10.3.1 does not send a Content-Disposition HTTP header s ...
CVE-2007-1405Cross-site scripting (XSS) vulnerability in the "download wiki page as ...
CVE-2006-5878Cross-site request forgery (CSRF) vulnerability in Edgewall Trac 0.10 ...
CVE-2006-3695Trac before 0.9.6 does not disable the "raw" or "include" commands whe ...
CVE-2006-2106Cross-site scripting (XSS) vulnerability in Edgewall Software Trac 0.9 ...
CVE-2005-4644Cross-site scripting (XSS) vulnerability in the HTML WikiProcessor in ...
CVE-2005-4305Cross-site scripting (XSS) vulnerability in Edgewall Trac 0.9, 0.9.1, ...
CVE-2005-4065SQL injection vulnerability in the search module in Edgewall Trac befo ...
CVE-2005-3980SQL injection vulnerability in the ticket query module in Edgewall Tra ...
CVE-2005-2147Trac before 0.8.4 allows remote attackers to read or upload arbitrary ...
CVE-2005-2007Directory traversal vulnerability in Edgewall Trac 0.8.3 and earlier a ...

Security announcements

DSA / DLADescription
DSA-1209trac
DSA-1152trac - missing input sanitising
DSA-951-2trac - missing input sanitising
DSA-739-1trac - missing input sanitising

Search for package or bug name: Reporting problems