4 matches found
FreeBSD Ports: serendipity
The remote host is missing an update to the system as announced in the referenced advisory. VID 9c133aa0-12bd-11dd-bab7-0016179b2dd5 OpenVAS Vulnerability Test $ Description: Auto generated from vuxml or freebsd advisories Authors: Thomas Reinke Copyright: Copyright c 2008 E-Soft Inc...
CVE-2008-1385
Cross-site scripting XSS vulnerability in the Top Referrers aka referrer plugin in Serendipity S9Y before 1.3.1 allows remote attackers to inject arbitrary web script or HTML via the Referer HTTP header...
CVE-2008-1385
CVE-2008-1385 is an XSS vulnerability in Serendipity's Top Referrers (referrer) plugin prior to 1.3.1. The referrer string is not escaped, allowing injection via the Referer header and leading to arbitrary script/HTML execution. The issue is documented with a CVSS v2 base score of 4.3 (Medium). R...
s9y-xss.txt
Two smaller issues in s9y, published here: http://int21.de/cve/CVE-2008-1385-s9y.html http://int21.de/cve/CVE-2008-1386-s9y.html Cross Site Scripting XSS in serendipity 1.3 referrer plugin, CVE-2008-1385 References http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-1385 http://www.s9y.org/...