Serendipity < 0.7.1 compat.php searchTerm Parameter XSS

2004-12-1400:00:00

Tenable

www.tenable.com

JSON

The remote host is running Serendipity. Serendipity is a blogging software that is implemented in PHP. This version of Serendipity is vulnerable to a remote Cross-Site Scripting (XSS) attack.

Binary data 2456.prm

VendorProductVersionCPE
s9yserendipitycpe:/a:s9y:serendipity

Vendor	Product	Version	CPE
s9y	serendipity		cpe:/a:s9y:serendipity

References

cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2004-2525

www.nessus.org/u?e47198ec

www.s9y.org/5.html

JSON