Description

Cross-site scripting (XSS) vulnerability in the BBCode plugin for Serendipity before 0.8 allows remote attackers to inject arbitrary web script or HTML via unknown vectors.

Remediation

References

CVE-2005-1448

Related Vulnerabilities

WordPress Plugin Notices Ticker Cross-Site Scripting (6.1)

Atlassian Jira Incorrect Authorization Vulnerability (CVE-2019-3401)

WordPress Plugin Attendance Manager Multiple Vulnerabilities (0.5.6)

Atlassian Jira Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2017-18033)

WordPress Plugin Photo Gallery by 10Web-Mobile-Friendly Image Gallery SQL Injection (1.3.29)

Severity

Medium

Classification

CVE-2005-1448

Tags

Missing Update Known Vulnerabilities