Open redirect vulnerability in the search script in Trac prior to 0.10.5 allows remote malicious users to redirect users to arbitrary web sites and conduct phishing attacks via a URL in the q parameter, possibly related to the quickjump function.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
edgewall trac |
||
fedoraproject fedora 9 |
||
fedoraproject fedora 8 |