Trac is vulnerable to improper policy checks and missing 'raw' role check in docutils
High severity
GitHub Reviewed
Published
May 2, 2022
to the GitHub Advisory Database
•
Updated Apr 29, 2024
Description
Published by the National Vulnerability Database
Dec 23, 2009
Published to the GitHub Advisory Database
May 2, 2022
Reviewed
Apr 29, 2024
Last updated
Apr 29, 2024
Multiple unspecified vulnerabilities in Trac before 0.11.6 have unknown impact and attack vectors, possibly related to (1) "policy checks in report results when using alternate formats" or (2) a "check for the 'raw' role that is missing in docutils < 0.6."
References