Lucene search
K

6 matches found

EUVD
EUVD
added 2025/10/07 12:30 a.m.3 views

EUVD-2007-6356

Malware in sbrugna...

4.3CVSS6.4AI score0.00516EPSS
Exploits0References4
WPVulnDB
WPVulnDB
added 2019/07/03 12:0 a.m.31 views

Visitors Traffic Real Time Statistics < 1.13 - CSRF to Stored XSS/SQLi

A CSRF vulnerability in the plugin gives attackers the possibility to craft an AJAX request, which lets blog administrators alter plugin settings. Due to a lack of encoding for malicious data when displaying it in the admin backend, there is a Stored XSS. Also, as the user input coming from the...

6.8CVSS3AI score0.00795EPSS
Exploits1References2Affected Software1
Prion
Prion
added 2007/12/17 6:46 p.m.13 views

Cross site request forgery (csrf)

Cross-site request forgery CSRF vulnerability in the mycalendar plugin before 0.13 for Serendipity allows remote attackers to perform actions as blog administrators, which can be leveraged to conduct cross-site scripting XSS attacks on the blog page...

4.3CVSS6.6AI score0.00516EPSS
Exploits0References3Affected Software1
NVD
NVD
added 2007/12/17 6:46 p.m.12 views

CVE-2007-6390

Cross-site request forgery CSRF vulnerability in the mycalendar plugin before 0.13 for Serendipity allows remote attackers to perform actions as blog administrators, which can be leveraged to conduct cross-site scripting XSS attacks on the blog page...

4.3CVSS6.2AI score0.00516EPSS
Exploits0References3
Cvelist
Cvelist
added 2007/12/17 6:0 p.m.21 views

CVE-2007-6390

Cross-site request forgery CSRF vulnerability in the mycalendar plugin before 0.13 for Serendipity allows remote attackers to perform actions as blog administrators, which can be leveraged to conduct cross-site scripting XSS attacks on the blog page...

6.2AI score0.00516EPSS
Exploits0References3
CVE
CVE
added 2007/12/17 6:0 p.m.40 views

CVE-2007-6390

CVE-2007-6390 affects the Serendipity mycalendar plugin (pre-0.13). The vulnerability is a CSRF flaw that could allow an attacker to perform actions as a blog administrator, which could be leveraged to enable or facilitate XSS on the blog page. Affected component: mycalendar plugin for Serendipit...

4.3CVSS6.2AI score0.00516EPSS
Exploits0References3Affected Software1
Rows per page
Query Builder