Unrated severityNVD Advisory· Published Apr 29, 2006· Updated Apr 16, 2026

CVE-2006-2106

Description

Cross-site scripting (XSS) vulnerability in Edgewall Software Trac 0.9.4 and earlier allows remote attackers to inject arbitrary web script or HTML via unknown attack vectors related to a "wiki macro."

Affected products

Edgewall Software/Trac
cpe:2.3:a:edgewall_software:trac:0.9.4:*:*:*:*:*:*:*

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

securitytracker.com/idnvdPatchVendor Advisory
www.edgewall.com/blog/news/trac_0_9_5.htmlnvdPatch
jvn.jp/jp/JVN%2384091359/index.htmlnvd
secunia.com/advisories/19870nvd
www.securityfocus.com/bid/17741nvd
www.vupen.com/english/advisories/2006/1557nvd
exchange.xforce.ibmcloud.com/vulnerabilities/26125nvd

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.000
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000