serendipity -- multiple cross site scripting vulnerabilities

ID 9C133AA0-12BD-11DD-BAB7-0016179B2DD5
Type freebsd
Reporter FreeBSD
Modified 2008-04-22T00:00:00


Hanno Boeck reports:

The installer of serendipity 1.3 has various Cross Site Scripting issues. This is considered low priority, as attack scenarios are very unlikely. Various path fields are not escaped properly, thus filling them with javascript code will lead to XSS. MySQL error messages are not escaped, thus the database host field can also be filled with javascript.

In the referrer plugin of the blog application serendipity, the referrer string is not escaped, thus leading to a permanent XSS.