CVE-2006-5878: Edgewall Trac Cross-site request forgery (CSRF) vulnerability

May 1, 2022 (updated November 18, 2024)

Cross-site request forgery (CSRF) vulnerability in Edgewall Trac 0.10 and earlier allows remote attackers to perform unauthorized actions as other users via unknown vectors.

References

exchange.xforce.ibmcloud.com/vulnerabilities/30146
github.com/advisories/GHSA-2q26-r8c4-jfx5
github.com/pypa/advisory-database/tree/main/vulns/trac/PYSEC-2006-3.yaml
nvd.nist.gov/vuln/detail/CVE-2006-5878
web.archive.org/web/20140724015143/http://secunia.com/advisories/23357
web.archive.org/web/20140724111033/http://secunia.com/advisories/22868
web.archive.org/web/20140801133247/http://secunia.com/advisories/22789

Detect and mitigate CVE-2006-5878 with GitLab Dependency Scanning

Secure your software supply chain by verifying that all open source dependencies used in your projects contain no disclosed vulnerabilities. Learn more about Dependency Scanning →