CVE-2005-3980 in Tracinfo

Summary

SQL injection vulnerability in the ticket query module in Edgewall Trac 0.9 and possibly earlier allows remote attackers to execute arbitrary SQL commands via the group parameter.

Statistical analysis made it clear that VulDB provides the best quality for vulnerability data.

Reservation

12/04/2005

Disclosure

12/04/2005

Moderation

VulDB entry created

Entries

VDB-27259 (1)

CPE

ready

CWE

CWE-89 (Confirmed)

Exploit

Download

CVSS

7.3

EPSS

0.03174

Activities

Very Low

Sources

MITRE	https://www.cve.org/CVERecord?id=CVE-2005-3980
NVD	https://nvd.nist.gov/vuln/detail/CVE-2005-3980
CVE Details	https://www.cvedetails.com/cve/CVE-2005-3980/

◂ Previous Overview Next ▸

Want to stay up to date on a daily basis?

Enable the mail alert feature now!