{"id":"PYSEC-2009-7","details":"Multiple unspecified vulnerabilities in Trac before 0.11.6 have unknown impact and attack vectors, possibly related to (1) \"policy checks in report results when using alternate formats\" or (2) a \"check for the 'raw' role that is missing in docutils \u003c 0.6.\"","aliases":["CVE-2009-4405","GHSA-f9qv-j5g6-g5cr"],"modified":"2024-04-29T14:58:13.023720Z","published":"2009-12-23T21:30:00Z","references":[{"type":"WEB","url":"http://trac.edgewall.org/browser/tags/trac-0.11.6/RELEASE"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=542394"},{"type":"ADVISORY","url":"http://www.vupen.com/english/advisories/2009/3615"},{"type":"ADVISORY","url":"http://secunia.com/advisories/37901"},{"type":"ADVISORY","url":"http://secunia.com/advisories/37807"},{"type":"WEB","url":"https://www.redhat.com/archives/fedora-package-announce/2009-December/msg01169.html"},{"type":"WEB","url":"https://exchange.xforce.ibmcloud.com/vulnerabilities/54983"}],"affected":[{"package":{"name":"trac","ecosystem":"PyPI","purl":"pkg:pypi/trac"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0.11.6"}]}],"versions":["0.10","0.11","0.11.1","0.11.2","0.11.3","0.11.4","0.8.4","0.9"],"database_specific":{"source":"https://github.com/pypa/advisory-database/blob/main/vulns/trac/PYSEC-2009-7.yaml"}}],"schema_version":"1.7.3"}