Lucene search
MitreCVE-2005-4644HistoryJan 11, 2006 - 9:00 p.m.
CVE-2005-4644
2006-01-1121:00:00
mitre
web.nvd.nist.gov
35
cve-2005-4644
cross-site scripting
xss
edgewall trac
html wikiprocessor
nvd
CVSS2
4.3
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:M/Au:N/C:N/I:P/A:N
AI Score
5.4
Confidence
High
EPSS
0.009
Percentile
83.1%
Cross-site scripting (XSS) vulnerability in the HTML WikiProcessor in Edgewall Trac 0.9.2 allows remote attackers to inject arbitrary web script or HTML via javascript in the SRC attribute of an IMG tag.
Affected configurations
Node
edgewall_softwaretracMatch0.9.2
| Vendor | Product | Version | CPE |
|---|---|---|---|
| edgewall_software | trac | 0.9.2 | cpe:2.3:a:edgewall_software:trac:0.9.2:*:*:*:*:*:*:* |
Related
ubuntucve
ubuntucve
CVE-2005-4644
2005-12-31 00:00:00
osv
osv
PYSEC-2005-1
2005-12-31 05:00:00
trac - missing input sanitising
2006-01-23 00:00:00
github
github
Trac HTML WikiProcessor cross-site scripting (XSS) vulnerability
2022-05-01 02:29:20
cvelist
cvelist
CVE-2005-4644
2006-01-11 21:00:00
debiancve
debiancve
CVE-2005-4644
2006-01-11 21:00:00
nvd
nvd
CVE-2005-4644
2005-12-31 05:00:00
openvas
openvas
Debian Security Advisory DSA 951-1 (trac)
2008-01-17 00:00:00
Debian Security Advisory DSA 951-2 (trac)
2008-01-17 00:00:00
Debian Security Advisory DSA 951-1 (trac)
2008-01-17 00:00:00
debian
debian
nessus
nessus
Debian DSA-951-2 : trac - missing input sanitising
2006-10-14 00:00:00
CVSS2
4.3
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:M/Au:N/C:N/I:P/A:N
AI Score
5.4
Confidence
High
EPSS
0.009
Percentile
83.1%
Related for CVE-2005-4644