Trac Download Function Cross-Site Scripting Vulnerability
|
Bugtraq ID:
|
22888
|
|
Class:
|
Input Validation Error
|
|
CVE:
|
|
|
Remote:
|
Yes
|
|
Local:
|
No
|
|
Published:
|
Mar 09 2007 12:00AM
|
|
Updated:
|
Mar 09 2007 05:25PM
|
|
Credit:
|
Yoshinori Oota is credited with the discovery of this vulnerability.
|
|
Vulnerable:
|
Trac Trac 0.10.3
Trac Trac 0.9.6
Trac Trac 0.9.5
Trac Trac 0.9.4
Nortel Networks VPN Router 1010 0.9.3
|
|
|
|
Not Vulnerable:
|
Trac Trac 0.10.3 1
|
|
