Lucene search
K

8 matches found

seebug.org
seebug.org
added 2014/07/01 12:0 a.m.21 views

Edgewall Software Trac 0.7.1/0.8/0.9 Search Module SQL Injection Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/15720/info Trac is prone to an SQL injection vulnerability. This issue is due to a failure in the application to properly sanitize user-supplied input before using it in an SQL query. Successful exploitation could allow a...

7.1AI score
Exploits0
NVD
NVD
added 2006/04/29 10:2 a.m.19 views

CVE-2006-2106

Cross-site scripting XSS vulnerability in Edgewall Software Trac 0.9.4 and earlier allows remote attackers to inject arbitrary web script or HTML via unknown attack vectors related to a "wiki macro."...

4.3CVSS5.6AI score0.01369EPSS
Exploits0References7
Prion
Prion
added 2006/04/29 10:2 a.m.14 views

Cross site scripting

Cross-site scripting XSS vulnerability in Edgewall Software Trac 0.9.4 and earlier allows remote attackers to inject arbitrary web script or HTML via unknown attack vectors related to a "wiki macro."...

4.3CVSS6.1AI score0.01369EPSS
Exploits0References7Affected Software1
OSV
OSV
added 2006/04/29 10:2 a.m.7 views

CVE-2006-2106

Cross-site scripting XSS vulnerability in Edgewall Software Trac 0.9.4 and earlier allows remote attackers to inject arbitrary web script or HTML via unknown attack vectors related to a "wiki macro."...

5.7AI score
Exploits0References8
CVE
CVE
added 2006/04/29 10:0 a.m.46 views

CVE-2006-2106

Trac 0.9.4 and earlier contain a cross-site scripting (XSS) vulnerability in the wiki macro, allowing a remote attacker to inject arbitrary script/HTML in the browser. Upgrade to Trac 0.9.5 per Edgewall’s advisory/blog referenced in the sources to mitigate.

4.3CVSS5.5AI score0.01369EPSS
Exploits0References7Affected Software1
Cvelist
Cvelist
added 2006/04/29 10:0 a.m.23 views

CVE-2006-2106

Cross-site scripting XSS vulnerability in Edgewall Software Trac 0.9.4 and earlier allows remote attackers to inject arbitrary web script or HTML via unknown attack vectors related to a "wiki macro."...

5.5AI score0.01369EPSS
Exploits0References7
Debian CVE
Debian CVE
added 2006/04/29 10:0 a.m.21 views

CVE-2006-2106

Cross-site scripting XSS vulnerability in Edgewall Software Trac 0.9.4 and earlier allows remote attackers to inject arbitrary web script or HTML via unknown attack vectors related to a "wiki macro."...

4.3CVSS4.3AI score0.01369EPSS
Exploits0
Exploit DB
Exploit DB
added 2005/12/05 12:0 a.m.23 views

Edgewall Software Trac 0.7.1/0.8/0.9 Search Module - SQL Injection

source: https://www.securityfocus.com/bid/15720/info Trac is prone to an SQL injection vulnerability. This issue is due to a failure in the application to properly sanitize user-supplied input before using it in an SQL query. Successful exploitation could allow an attacker to compromise the...

7.4AI score
Exploits0
Rows per page
Query Builder