Traq 3.7.1 CSRF / XSS / SQL Injection
================================================= Synopsis: Traq vulnerable to XSS, Admin account creation CSRF, SQL Injection, Lack of session timeout. Product: Traq Version: 3.7.1 Vendor site: https://traq.io/ Researcher: Matt Landers [email protected] twitter.com/matthewjland...