Family: CGI abuses --> Category: infos
Edgewall Software Trac SQL injection flaw Vulnerability Scan
Vulnerability Scan Summary
Checks for SQL injection flaw in Trac
Detailed Explanation for this Vulnerability Test
The remote web server contains a CGI script that is affected by a SQL
The remote host is running Trac, an enhanced wiki and issue tracking
system for software development projects written in python.
The remote version of this software is prone to a SQL injection flaw
through the ticket query module due to 'group' parameter is not
Upgrade to Trac version 0.9.1 or later.
High / CVSS Base Score : 7.0
Click HERE for more information and discussions on this network vulnerability scan.