Description
Cross-site scripting (XSS) vulnerability in Serendipity before 1.5.4, when "Remember me" logins are enabled, allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.
Remediation
References
Related Vulnerabilities
WordPress 4.4.x Same Origin Method Execution (SOME) Vulnerability (4.4 - 4.4.2)
WordPress Plugin YARPP-Yet Another Related Posts SQL Injection (5.30.2)
WordPress Plugin Connections Business Directory Unspecified Vulnerability (10.4.7)
Piwigo Improper Access Control Vulnerability (CVE-2016-10514)
WordPress Plugin Block wp-login Cross-Site Request Forgery (1.3.0)