Edgewall Software Trac Unauthorized File Upload/Download Vulnerability

info
discussion
exploit
solution
references

Edgewall Software Trac Unauthorized File Upload/Download Vulnerability

Trac is affected by an unauthorized file upload/download vulnerability.

This issue can lead to information disclosure and unauthorized remote access as an attacker can place and execute malicious PHP scripts on an affected computer.

Trac 0.8.3 and prior versions are affected by this issue.