FreeBSD : serendipity -- multiple XSS vulnerabilities (9c133aa0-12bd-11dd-bab7-0016179b2dd5)

Hanno Boeck reports : The installer of serendipity 1.3 has various Cross Site Scripting issues. This is considered low priority, as attack scenarios are very unlikely. Various path fields are not escaped properly, thus filling them with JavaScript code will lead to XSS. MySQL error messages are n...

CVE-2008-1385

Cross-site scripting XSS vulnerability in the Top Referrers aka referrer plugin in Serendipity S9Y before 1.3.1 allows remote attackers to inject arbitrary web script or HTML via the Referer HTTP header...

CVE-2008-1385

Cross-site scripting XSS vulnerability in the Top Referrers aka referrer plugin in Serendipity S9Y before 1.3.1 allows remote attackers to inject arbitrary web script or HTML via the Referer HTTP header...

serendipity -- multiple cross site scripting vulnerabilities

Hanno Boeck reports: The installer of serendipity 1.3 has various Cross Site Scripting issues. This is considered low priority, as attack scenarios are very unlikely. Various path fields are not escaped properly, thus filling them with javascript code will lead to XSS. MySQL error messages are no...

[Full-disclosure] Cross site scripting issues in s9y (CVE-2008-1386, CVE-2008-1387)

Two smaller issues in s9y, published here: http://int21.de/cve/CVE-2008-1386-s9y.html http://int21.de/cve/CVE-2008-1387-s9y.html Cross Site Scripting XSS in serendipity 1.3 referrer plugin, CVE-2008-1385 References https://vulners.com/cve/CVE-2008-1385 http://www.s9y.org/ Description In the...