CVE-2005-3980 | SynScan

Vulnerability Database

289,784

Total vulnerabilities in the database

CVE-2005-3980

SQL injection vulnerability in the ticket query module in Edgewall Trac 0.9 and possibly earlier allows remote attackers to execute arbitrary SQL commands via the group parameter.

Published: Dec 4, 2005
Updated: Apr 13, 2023
CVE: CVE-2005-3980
Severity: High
Exploit:

CVSS v2:

Severity: High
Score: 7.5
AV:N/AC:L/Au:N/C:P/I:P/A:P

No CWE or OWASP classifications available.

Affected Software
References

Software	From	Fixed in
edgewall_software / trac	0.8.4	0.8.4.x
edgewall_software / trac	0.7.1	0.7.1.x
edgewall_software / trac	0.6.1	0.6.1.x
edgewall_software / trac	0.8	0.8.x
edgewall_software / trac	0.6	0.6.x
edgewall_software / trac	0.8.2	0.8.2.x
edgewall_software / trac	0.9b1	0.9b1.x
edgewall_software / trac	0.5.2	0.5.2.x
edgewall_software / trac	0.5.1	0.5.1.x
edgewall_software / trac	0.8.3	0.8.3.x
edgewall_software / trac	0.9	0.9.x
edgewall_software / trac	0.9b2	0.9b2.x
edgewall_software / trac	0.8.1	0.8.1.x
edgewall_software / trac	0.7	0.7.x
edgewall_software / trac	0.50.9	0.50.9.x