Description

Multiple cross-site scripting (XSS) vulnerabilities in Serendipity 0.8 allow remote attackers to inject arbitrary web script or HTML via the (1) templatedropdown and (2) shoutbox plugins.

Remediation

References

CVE-2005-1713

Related Vulnerabilities

WordPress Plugin Child Theme Creator by Orbisius Arbitrary File Modification (1.2.6)

Oracle Database Server CVE-2013-1554 Vulnerability (CVE-2013-1554)

WordPress Plugin MoodThingy Mood Rating Widget SQL Injection (0.9.1)

WordPress Plugin Events Manager Multiple Vulnerabilities (5.9.7.3)

WordPress Plugin Slideshow Gallery LITE Cross-Site Scripting (1.6.4)

Severity

Medium

Classification

CVE-2005-1713

Tags

Missing Update Known Vulnerabilities