Description

SQL injection vulnerability in exit.php for Serendipity 0.8 and earlier allows remote attackers to execute arbitrary SQL commands via the (1) url_id or (2) entry_id parameters.

Remediation

References

CVE-2005-1134

Related Vulnerabilities

WordPress Plugin WP Maps-Display Google Maps Perfectly with Ease Cross-Site Request Forgery (4.0.9)

WordPress Plugin Feed Changer & Remover Cross-Site Scripting (0.2)

WordPress Plugin Smart Forms-when you need more than just a contact form Security Bypass (2.6.84)

Oracle HTTP Server Use After Free Vulnerability (CVE-2019-10082)

Magento Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2019-7927)

Severity

High

Classification

CVE-2005-1134

Tags

Missing Update Known Vulnerabilities