virus logo Intrusion Prevention

Traq.Authenticate.Function.Remote.Code.Execution

description-logoDescription

This indicates an attack attempt against a Remote Command Execution vulnerability in in Traq.
The vulnerability is caused by a broken authorization schema which doesn't stop the execution flow from an unauthorized user. It allows a remote attacker to execute arbitrary code via sending a crafted HTTP request.

affected-products-logoAffected Products

Traq 2.0 to 2.3

Impact logoImpact

System Compromise: Remote attackers can remote execute arbitrary code.

recomended-action-logoRecommended Actions

Upgrade to the latest version, available from the website.

Telemetry logoTelemetry

Coverage

IPS (Regular DB)
IPS (Extended DB)

References

http://www.exploit-db.com/exploits/18213/
ID 30631
Created Jan 12, 2012
Updated Nov 15, 2021
Risk black-background-circle-icon black-background-circle-icon black-background-circle-icon black-background-circle-icon lightgray-background-circle-icon
CVE ID
Default Action drop
Active
Affected OS All
Affected App Other