ByteOS Network

Vulnerability Details :

CVE-2005-4644

Assigner-mitre

Assigner Org ID-8254265b-2729-46b6-b9e3-3dfca2d5bfca

Published At-11 Jan, 2006 | 21:00

Updated At-07 Aug, 2024 | 23:53

Cross-site scripting (XSS) vulnerability in the HTML WikiProcessor in Edgewall Trac 0.9.2 allows remote attackers to inject arbitrary web script or HTML via javascript in the SRC attribute of an IMG tag.

EPSS History

Score

Latest Score

N/A

Percentile

Latest Percentile

N/A

▼Common Vulnerabilities and Exposures (CVE)

cve.org

Assigner:mitre

Assigner Org ID:8254265b-2729-46b6-b9e3-3dfca2d5bfca

Published At:11 Jan, 2006 | 21:00

Updated At:07 Aug, 2024 | 23:53

▼CVE Numbering Authority (CNA)

Affected Products

Vendor

n/a

Product

n/a

Versions

Affected

Problem Types

Type	CWE ID	Description
text	N/A	n/a

Type: text

CWE ID: N/A

Description: n/a

References

Hyperlink	Resource
http://secunia.com/advisories/18555	third-party-advisory x_refsource_SECUNIA
http://trac.edgewall.org/ticket/2473	x_refsource_CONFIRM
https://exchange.xforce.ibmcloud.com/vulnerabilities/24183	vdb-entry x_refsource_XF
http://secunia.com/advisories/18465	third-party-advisory x_refsource_SECUNIA
http://projects.edgewall.com/trac/ticket/2473	x_refsource_CONFIRM
http://www.vupen.com/english/advisories/2006/0226	vdb-entry x_refsource_VUPEN
http://www.securityfocus.com/bid/16198	vdb-entry x_refsource_BID
http://www.debian.org/security/2006/dsa-951	vendor-advisory x_refsource_DEBIAN

Hyperlink: http://secunia.com/advisories/18555

Resource:

third-party-advisory

x_refsource_SECUNIA

Hyperlink: http://trac.edgewall.org/ticket/2473

Resource:

x_refsource_CONFIRM

Hyperlink: https://exchange.xforce.ibmcloud.com/vulnerabilities/24183

Resource:

vdb-entry

x_refsource_XF

Hyperlink: http://secunia.com/advisories/18465

Resource:

third-party-advisory

x_refsource_SECUNIA

Hyperlink: http://projects.edgewall.com/trac/ticket/2473

Resource:

x_refsource_CONFIRM

Hyperlink: http://www.vupen.com/english/advisories/2006/0226

Resource:

vdb-entry

x_refsource_VUPEN

Hyperlink: http://www.securityfocus.com/bid/16198

Resource:

vdb-entry

x_refsource_BID

Hyperlink: http://www.debian.org/security/2006/dsa-951

Resource:

vendor-advisory

x_refsource_DEBIAN

▼Authorized Data Publishers (ADP)

CVE Program Container

References

Hyperlink	Resource
http://secunia.com/advisories/18555	third-party-advisory x_refsource_SECUNIA x_transferred
http://trac.edgewall.org/ticket/2473	x_refsource_CONFIRM x_transferred
https://exchange.xforce.ibmcloud.com/vulnerabilities/24183	vdb-entry x_refsource_XF x_transferred
http://secunia.com/advisories/18465	third-party-advisory x_refsource_SECUNIA x_transferred
http://projects.edgewall.com/trac/ticket/2473	x_refsource_CONFIRM x_transferred
http://www.vupen.com/english/advisories/2006/0226	vdb-entry x_refsource_VUPEN x_transferred
http://www.securityfocus.com/bid/16198	vdb-entry x_refsource_BID x_transferred
http://www.debian.org/security/2006/dsa-951	vendor-advisory x_refsource_DEBIAN x_transferred

Hyperlink: http://secunia.com/advisories/18555

Resource:

third-party-advisory

x_refsource_SECUNIA

x_transferred

Hyperlink: http://trac.edgewall.org/ticket/2473

Resource:

x_refsource_CONFIRM

x_transferred

Hyperlink: https://exchange.xforce.ibmcloud.com/vulnerabilities/24183

Resource:

vdb-entry

x_refsource_XF

x_transferred

Hyperlink: http://secunia.com/advisories/18465

Resource:

third-party-advisory

x_refsource_SECUNIA

x_transferred

Hyperlink: http://projects.edgewall.com/trac/ticket/2473

Resource:

x_refsource_CONFIRM

x_transferred

Hyperlink: http://www.vupen.com/english/advisories/2006/0226

Resource:

vdb-entry

x_refsource_VUPEN

x_transferred

Hyperlink: http://www.securityfocus.com/bid/16198

Resource:

vdb-entry

x_refsource_BID

x_transferred

Hyperlink: http://www.debian.org/security/2006/dsa-951

Resource:

vendor-advisory

x_refsource_DEBIAN

x_transferred

▼National Vulnerability Database (NVD)

nvd.nist.gov

Source:cve@mitre.org

Published At:31 Dec, 2005 | 05:00

Updated At:03 Apr, 2025 | 01:03

Date Added	Due Date	Vulnerability Name	Required Action
	N/A

Metrics

Type	Version	Base score	Base severity	Vector
Primary	2.0	4.3	MEDIUM	AV:N/AC:M/Au:N/C:N/I:P/A:N

Type: Primary

Version: 2.0

Base score: 4.3

Base severity: MEDIUM

Vector:

AV:N/AC:M/Au:N/C:N/I:P/A:N

CPE Matches

edgewall_software>>trac>>0.9.2

cpe:2.3:a:edgewall_software:trac:0.9.2:*:*:*:*:*:*:*

Weaknesses

CWE ID	Type	Source
NVD-CWE-Other	Primary	nvd@nist.gov

CWE ID: NVD-CWE-Other

Type: Primary

Source: nvd@nist.gov

References

Hyperlink	Source	Resource
http://projects.edgewall.com/trac/ticket/2473	cve@mitre.org	Exploit Patch Vendor Advisory
http://secunia.com/advisories/18465	cve@mitre.org	N/A
http://secunia.com/advisories/18555	cve@mitre.org	N/A
http://trac.edgewall.org/ticket/2473	cve@mitre.org	N/A
http://www.debian.org/security/2006/dsa-951	cve@mitre.org	N/A
http://www.securityfocus.com/bid/16198	cve@mitre.org	Patch
http://www.vupen.com/english/advisories/2006/0226	cve@mitre.org	N/A
https://exchange.xforce.ibmcloud.com/vulnerabilities/24183	cve@mitre.org	N/A
http://projects.edgewall.com/trac/ticket/2473	af854a3a-2127-422b-91ae-364da2661108	Exploit Patch Vendor Advisory
http://secunia.com/advisories/18465	af854a3a-2127-422b-91ae-364da2661108	N/A
http://secunia.com/advisories/18555	af854a3a-2127-422b-91ae-364da2661108	N/A
http://trac.edgewall.org/ticket/2473	af854a3a-2127-422b-91ae-364da2661108	N/A
http://www.debian.org/security/2006/dsa-951	af854a3a-2127-422b-91ae-364da2661108	N/A
http://www.securityfocus.com/bid/16198	af854a3a-2127-422b-91ae-364da2661108	Patch
http://www.vupen.com/english/advisories/2006/0226	af854a3a-2127-422b-91ae-364da2661108	N/A
https://exchange.xforce.ibmcloud.com/vulnerabilities/24183	af854a3a-2127-422b-91ae-364da2661108	N/A

Hyperlink: http://projects.edgewall.com/trac/ticket/2473

Source: cve@mitre.org

Resource:

Exploit

Patch

Vendor Advisory

Hyperlink: http://secunia.com/advisories/18465

Source: cve@mitre.org

Resource: N/A

Hyperlink: http://secunia.com/advisories/18555

Source: cve@mitre.org

Resource: N/A

Hyperlink: http://trac.edgewall.org/ticket/2473

Source: cve@mitre.org

Resource: N/A

Hyperlink: http://www.debian.org/security/2006/dsa-951

Source: cve@mitre.org

Resource: N/A

Hyperlink: http://www.securityfocus.com/bid/16198

Source: cve@mitre.org

Resource:

Patch

Hyperlink: http://www.vupen.com/english/advisories/2006/0226

Source: cve@mitre.org

Resource: N/A

Hyperlink: https://exchange.xforce.ibmcloud.com/vulnerabilities/24183

Source: cve@mitre.org

Resource: N/A

Hyperlink: http://projects.edgewall.com/trac/ticket/2473