7.5
CVE-2006-5878
- EPSS 2.11%
- Veröffentlicht 14.11.2006 19:07:00
- Zuletzt bearbeitet 16.06.2026 22:32:03
- Quelle cve@mitre.org
- CVE-Watchlists
- Unerledigt
LoginCross-site request forgery (CSRF) vulnerability in Edgewall Trac 0.10 and earlier allows remote attackers to perform unauthorized actions as other users via unknown vectors.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
Edgewall Software ≫ Trac Version <= 0.10
Edgewall Software ≫ Trac Version0.5
Edgewall Software ≫ Trac Version0.5.1
Edgewall Software ≫ Trac Version0.5.2
Edgewall Software ≫ Trac Version0.6
Edgewall Software ≫ Trac Version0.6.1
Edgewall Software ≫ Trac Version0.7
Edgewall Software ≫ Trac Version0.7.1
Edgewall Software ≫ Trac Version0.8
Edgewall Software ≫ Trac Version0.8.1
Edgewall Software ≫ Trac Version0.8.2
Edgewall Software ≫ Trac Version0.8.3
Edgewall Software ≫ Trac Version0.8.4
Edgewall Software ≫ Trac Version0.9
Edgewall Software ≫ Trac Version0.9.1
Edgewall Software ≫ Trac Version0.9.2
Edgewall Software ≫ Trac Version0.9.3
Edgewall Software ≫ Trac Version0.9.4
Edgewall Software ≫ Trac Version0.9.5
Edgewall Software ≫ Trac Version0.9.6
Edgewall Software ≫ Trac Version0.9b1
Edgewall Software ≫ Trac Version0.9b2
Edgewall Software ≫ Trac Version0.50.9
| Typ | Quelle | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 2.11% | 0.794 |
| Quelle | Base Score | Exploit Score | Impact Score | Vector String |
|---|---|---|---|---|
| nvd@nist.gov | 7.5 | 10 | 6.4 |
AV:N/AC:L/Au:N/C:P/I:P/A:P
|
http://trac.edgewall.org/wiki/ChangeLog
http://secunia.com/advisories/22789
http://secunia.com/advisories/22868
http://secunia.com/advisories/23357
http://security.gentoo.org/glsa/glsa-200612-14.xml
http://trac.edgewall.org/ticket/4049
http://www.debian.org/security/2006/dsa-1209
http://www.vupen.com/english/advisories/2006/4422
https://exchange.xforce.ibmcloud.com/vulnerabilities/30146