Cross-site request forgery (CSRF) vulnerability in Edgewall Trac 0.10 and earlier allows remote attackers to perform unauthorized actions as other users via unknown vectors.

References

• https://nvd.nist.gov/vuln/detail/CVE-2006-5878
• https://exchange.xforce.ibmcloud.com/vulnerabilities/30146
• http://security.gentoo.org/glsa/glsa-200612-14.xml
• http://trac.edgewall.org/ticket/4049
• http://trac.edgewall.org/wiki/ChangeLog
• http://www.debian.org/security/2006/dsa-1209
• https://web.archive.org/web/20140724015143/http://secunia.com/advisories/23357
• https://web.archive.org/web/20140724111033/http://secunia.com/advisories/22868
• https://web.archive.org/web/20140801133247/http://secunia.com/advisories/22789