{"id":"CVE-2008-3328","details":"Cross-site scripting (XSS) vulnerability in the wiki engine in Trac before 0.10.5 allows remote attackers to inject arbitrary web script or HTML via unknown vectors.","aliases":["GHSA-x6jf-c7wh-7m7w","PYSEC-2008-5"],"modified":"2025-08-09T19:01:28Z","published":"2008-07-27T22:41:00Z","references":[{"type":"ADVISORY","url":"http://secunia.com/advisories/31231"},{"type":"ADVISORY","url":"http://secunia.com/advisories/31314"},{"type":"ADVISORY","url":"http://www.vupen.com/english/advisories/2008/2223/references"},{"type":"WEB","url":"http://trac.edgewall.org/wiki/ChangeLog"},{"type":"WEB","url":"http://www.securityfocus.com/bid/30400"},{"type":"WEB","url":"https://exchange.xforce.ibmcloud.com/vulnerabilities/44016"},{"type":"WEB","url":"https://www.redhat.com/archives/fedora-package-announce/2008-July/msg01261.html"},{"type":"WEB","url":"https://www.redhat.com/archives/fedora-package-announce/2008-July/msg01270.html"}],"schema_version":"1.7.3"}