Vulnerability Details CVE-2006-5878
Cross-site request forgery (CSRF) vulnerability in Edgewall Trac 0.10 and earlier allows remote attackers to perform unauthorized actions as other users via unknown vectors.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.018
EPSS Ranking 81.9%
CVSS Severity
CVSS v2 Score 7.5
References
- http://secunia.com/advisories/22789
- http://secunia.com/advisories/22868
- http://secunia.com/advisories/23357
- http://security.gentoo.org/glsa/glsa-200612-14.xml
- http://trac.edgewall.org/ticket/4049
- http://trac.edgewall.org/wiki/ChangeLog
- http://www.debian.org/security/2006/dsa-1209
- http://www.vupen.com/english/advisories/2006/4422
- https://exchange.xforce.ibmcloud.com/vulnerabilities/30146
- http://secunia.com/advisories/22789
- http://secunia.com/advisories/22868
- http://secunia.com/advisories/23357
- http://security.gentoo.org/glsa/glsa-200612-14.xml
- http://trac.edgewall.org/ticket/4049
- http://trac.edgewall.org/wiki/ChangeLog
- http://www.debian.org/security/2006/dsa-1209
- http://www.vupen.com/english/advisories/2006/4422
- https://exchange.xforce.ibmcloud.com/vulnerabilities/30146
Products affected by CVE-2006-5878
-
cpe:2.3:a:edgewall_software:trac:*
-
cpe:2.3:a:edgewall_software:trac:0.5
-
cpe:2.3:a:edgewall_software:trac:0.5.1
-
cpe:2.3:a:edgewall_software:trac:0.5.2
-
cpe:2.3:a:edgewall_software:trac:0.50.9
-
cpe:2.3:a:edgewall_software:trac:0.6
-
cpe:2.3:a:edgewall_software:trac:0.6.1
-
cpe:2.3:a:edgewall_software:trac:0.7
-
cpe:2.3:a:edgewall_software:trac:0.7.1
-
cpe:2.3:a:edgewall_software:trac:0.8
-
cpe:2.3:a:edgewall_software:trac:0.8.1
-
cpe:2.3:a:edgewall_software:trac:0.8.2
-
cpe:2.3:a:edgewall_software:trac:0.8.3
-
cpe:2.3:a:edgewall_software:trac:0.8.4
-
cpe:2.3:a:edgewall_software:trac:0.9
-
cpe:2.3:a:edgewall_software:trac:0.9.1
-
cpe:2.3:a:edgewall_software:trac:0.9.2
-
cpe:2.3:a:edgewall_software:trac:0.9.3
-
cpe:2.3:a:edgewall_software:trac:0.9.4
-
cpe:2.3:a:edgewall_software:trac:0.9.5
-
cpe:2.3:a:edgewall_software:trac:0.9.6
-
cpe:2.3:a:edgewall_software:trac:0.9b1
-
cpe:2.3:a:edgewall_software:trac:0.9b2