SQL injection vulnerability in the search module in Edgewall Trac before 0.9.2 allows remote attackers to execute arbitrary SQL commands via unknown vectors.
| Software | From | Fixed in |
|---|---|---|
| edgewall_software / trac | 0.7.1 | 0.7.1.x |
| edgewall_software / trac | 0.8.1 | 0.8.1.x |
| edgewall_software / trac | 0.8.3 | 0.8.3.x |
| edgewall_software / trac | 0.8.4 | 0.8.4.x |
| edgewall_software / trac | 0.9 | 0.9.x |
| edgewall_software / trac | 0.9.1 | 0.9.1.x |