Lucene search
HistoryDec 31, 2005 - 5:00 a.m.
CVE-2005-4644
CVSS2
4.3
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:M/Au:N/C:N/I:P/A:N
AI Score
5.5
Confidence
High
EPSS
0.009
Percentile
83.1%
Cross-site scripting (XSS) vulnerability in the HTML WikiProcessor in Edgewall Trac 0.9.2 allows remote attackers to inject arbitrary web script or HTML via javascript in the SRC attribute of an IMG tag.
Affected configurations
Node
edgewall_softwaretracMatch0.9.2
| Vendor | Product | Version | CPE |
|---|---|---|---|
| edgewall_software | trac | 0.9.2 | cpe:2.3:a:edgewall_software:trac:0.9.2:*:*:*:*:*:*:* |
Related
ubuntucve
ubuntucve
CVE-2005-4644
2005-12-31 00:00:00
osv
osv
PYSEC-2005-1
2005-12-31 05:00:00
trac - missing input sanitising
2006-01-23 00:00:00
github
github
Trac HTML WikiProcessor cross-site scripting (XSS) vulnerability
2022-05-01 02:29:20
cve
cve
CVE-2005-4644
2006-01-11 21:00:00
cvelist
cvelist
CVE-2005-4644
2006-01-11 21:00:00
debiancve
debiancve
CVE-2005-4644
2006-01-11 21:00:00
openvas
openvas
Debian Security Advisory DSA 951-1 (trac)
2008-01-17 00:00:00
Debian Security Advisory DSA 951-1 (trac)
2008-01-17 00:00:00
Debian: Security Advisory (DSA-951-2)
2008-01-17 00:00:00
debian
debian
nessus
nessus
Debian DSA-951-2 : trac - missing input sanitising
2006-10-14 00:00:00
CVSS2
4.3
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:M/Au:N/C:N/I:P/A:N
AI Score
5.5
Confidence
High
EPSS
0.009
Percentile
83.1%
Related for NVD:CVE-2005-4644