Trac@0.9.4 Security Vulnerabilities and Issues — Trac@0.9.4 CVE List

Lucene search

Edgewall SoftwareTrac0.9.4

2 matches found

CVE•added 2006/11/14 7:7 p.m.•38 views

CVE-2006-5878

Cross-site request forgery (CSRF) vulnerability in Edgewall Trac 0.10 and earlier allows remote attackers to perform unauthorized actions as other users via unknown vectors.

7.5CVSS6.5AI score0.01792EPSS

CVE•added 2006/04/29 10:2 a.m.•34 views

CVE-2006-2106

Cross-site scripting (XSS) vulnerability in Edgewall Software Trac 0.9.4 and earlier allows remote attackers to inject arbitrary web script or HTML via unknown attack vectors related to a "wiki macro."

4.3CVSS5.5AI score0.00527EPSS