CVE-2007-6390

2007-12-17T18:46:00
ID CVE-2007-6390
Type cve
Reporter cve@mitre.org
Modified 2008-09-05T21:33:00

Description

Cross-site request forgery (CSRF) vulnerability in the mycalendar plugin before 0.13 for Serendipity allows remote attackers to perform actions as blog administrators, which can be leveraged to conduct cross-site scripting (XSS) attacks on the blog page.