Description

Multiple cross-site scripting (XSS) vulnerabilities in Serendipity 0.8 allow remote attackers to inject arbitrary web script or HTML via the (1) templatedropdown and (2) shoutbox plugins.

Remediation

References

CVE-2005-1713

Related Vulnerabilities

WordPress Plugin Duplicator-WordPress Migration Cross-Site Request Forgery (1.1.2)

MySQL Permissions, Privileges, and Access Controls Vulnerability (CVE-2012-4452)

WordPress Plugin wp-championship SQL Injection (5.8)

Joomla Improper Input Validation Vulnerability (CVE-2013-3242)

WebLogic Deserialization of Untrusted Data Vulnerability (CVE-2020-11619)

Severity

Medium

Classification

CVE-2005-1713

Tags

Missing Update Known Vulnerabilities