Get a demo
Web Application Vulnerabilities Runtime SCA Findings
Looking for the vulnerability index of Invicti's legacy products?
Invicti Enterprise Acunetix Standard & Premium
Trac Incorrect Default Permissions Vulnerability - CVE-2010-5108 - Vulnerability Database
Trac

Trac Incorrect Default Permissions Vulnerability - CVE-2010-5108

High
Reference: CVE-2010-5108
NVD Link: https://nvd.nist.gov/vuln/detail/CVE-2010-5108
Title: Trac Incorrect Default Permissions Vulnerability
Overview:

Trac 0.11.6 does not properly check workflow permissions before modifying a ticket. This can be exploited by an attacker to change the status and resolution of tickets without having proper permissions.