5

CVE-2008-5647

Unspecified vulnerability in the HTML sanitizer filter in Trac before 0.11.2 allows attackers to conduct phishing attacks via unknown attack vectors.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
TracTrac
TracTrac Version <= 0.11.2.1
TracTrac Version0.5
TracTrac Version0.5.1
TracTrac Version0.5.2
TracTrac Version0.6
TracTrac Version0.6.1
TracTrac Version0.7
TracTrac Version0.7.1
TracTrac Version0.8
TracTrac Version0.8.1
TracTrac Version0.8.2
TracTrac Version0.8.3
TracTrac Version0.8.4
TracTrac Version0.9
TracTrac Version0.9 Updateb1
TracTrac Version0.9 Updateb2
TracTrac Version0.9.1
TracTrac Version0.9.2
TracTrac Version0.9.3
TracTrac Version0.9.4
TracTrac Version0.9.5
TracTrac Version0.9.6
TracTrac Version0.10
TracTrac Version0.10.1
TracTrac Version0.10.2
TracTrac Version0.10.3
TracTrac Version0.10.3.1
TracTrac Version0.10.4
TracTrac Version0.10.5
TracTrac Version0.11
TracTrac Version0.11.2
Zu dieser CVE wurde keine Warnung gefunden.
EPSS Metriken
Typ Quelle Score Percentile
EPSS FIRST.org 1.07% 0.604
CVSS Metriken
Quelle Base Score Exploit Score Impact Score Vector String
nvd@nist.gov 5 10 2.9
AV:N/AC:L/Au:N/C:N/I:P/A:N
Es wurden noch keine Informationen zu CWE veröffentlicht.
http://trac.edgewall.org/wiki/ChangeLog
http://secunia.com/advisories/32652
Vendor Advisory
http://www.securityfocus.com/bid/32226
http://www.vupen.com/english/advisories/2008/3080
https://exchange.xforce.ibmcloud.com/vulnerabilities/46491