trac@0.11.2 vulnerabilities

Integrated SCM, wiki, issue tracker and project environment

latest version

1.6
latest non vulnerable version

1.6
first published

16 years ago
latest version published

9 months ago
licenses detected
- BSD-2-Clause
  [0.9,)
View trac package health on Snyk Advisor Open this link in a new tab

Report a new vulnerability Found a mistake?

Direct Vulnerabilities

Known vulnerabilities in the trac package. This does not include vulnerabilities belonging to this package’s dependencies.

Automatically find and fix vulnerabilities affecting your projects. Snyk scans for vulnerabilities and provides fixes for free.

Fix for free

Vulnerability Vulnerable Version

Vulnerability	Vulnerable Version
C Improper Access Control Trac is an Integrated SCM, wiki, issue tracker and project environment Affected versions of this package are vulnerable to Improper Access Control due to improper policy checks and a missing 'raw' role check in docutils. An attacker can exploit these vulnerabilities by leveraging the unspecified attack vectors related to policy checks in report results when using alternate formats or the absence of a 'raw' role check. How to fix Improper Access Control? Upgrade `Trac` to version 0.12 or higher.	[,0.12)
H Denial of Service (DoS) Trac is an Integrated SCM, wiki, issue tracker and project environment Affected versions of this package are vulnerable to Denial of Service (DoS) via unknown attack vectors related to "certain wiki markup." How to fix Denial of Service (DoS)? Upgrade `Trac` to version 0.12 or higher.	[,0.12)

Improper Access Control

Trac is an Integrated SCM, wiki, issue tracker and project environment

Affected versions of this package are vulnerable to Improper Access Control due to improper policy checks and a missing 'raw' role check in docutils. An attacker can exploit these vulnerabilities by leveraging the unspecified attack vectors related to policy checks in report results when using alternate formats or the absence of a 'raw' role check.

How to fix Improper Access Control?

Upgrade Trac to version 0.12 or higher.

[,0.12)

Denial of Service (DoS)

Trac is an Integrated SCM, wiki, issue tracker and project environment

Affected versions of this package are vulnerable to Denial of Service (DoS) via unknown attack vectors related to "certain wiki markup."

How to fix Denial of Service (DoS)?

Upgrade Trac to version 0.12 or higher.

[,0.12)

Go back to all versions of this package

trac@0.11.2 vulnerabilities

Integrated SCM, wiki, issue tracker and project environment

latest version

latest non vulnerable version

first published

latest version published

licenses detected

Direct Vulnerabilities