Lucene search
K

18 matches found

EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2008-0761

Malware in sbrugna...

4.3CVSS6.4AI score0.02221EPSS
Exploits1References7
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2007-6173

Malware in sbrugna...

4.3CVSS6.1AI score0.02464EPSS
Exploits2References14
EUVD
EUVD
added 2025/10/07 12:30 a.m.6 views

EUVD-2006-1910

Malware in sbrugna...

7.5CVSS6.4AI score0.01423EPSS
Exploits1References3
0day.today
0day.today
added 2017/04/12 12:0 a.m.26 views

s9y Serendipity Cross Site Request Forgery Vulnerability

Exploit for php platform in category web applications Details ====== Software: s9y Serendipity Version: Mitigations ======= update to Serendipity v2.1.x ======== FIX: ========== https://github.com/s9y/Serendipity/issues/452 Best regards, Zhiyang Zeng of Tencent security platform department...

7.1AI score
Exploits0
Packet Storm
Packet Storm
added 2017/04/11 12:0 a.m.31 views

s9y Serendipity Cross Site Request Forgery

Details ====== Software: s9y Serendipity Version: Mitigations ======= update to Serendipity v2.1.x ======== FIX: ========== https://github.com/s9y/Serendipity/issues/452 Best regards, Zhiyang Zeng of Tencent security platform department...

0.3AI score
Exploits0
seebug.org
seebug.org
added 2014/07/01 12:0 a.m.25 views

S9Y Serendipity 1.3 - Referer HTTP Header XSS

No description provided by source. source: http://www.securityfocus.com/bid/28885/info S9Y Serendipity is prone to an HTML-injection vulnerability and multiple cross-site scripting vulnerabilities because it fails to properly sanitize user-supplied input. An attacker may leverage these issues to...

7.1AI score
Exploits0
Exploit DB
Exploit DB
added 2008/04/22 12:0 a.m.38 views

S9Y Serendipity 1.3 - Referer HTTP Header Cross-Site Scripting

source: https://www.securityfocus.com/bid/28885/info S9Y Serendipity is prone to an HTML-injection vulnerability and multiple cross-site scripting vulnerabilities because it fails to properly sanitize user-supplied input. An attacker may leverage these issues to execute arbitrary script code in t...

7.4AI score
Exploits0
NVD
NVD
added 2008/02/13 8:0 p.m.17 views

CVE-2008-0751

Cross-site scripting XSS vulnerability in the Freetag before 2.96 plugin for S9Y Serendipity, when using Internet Explorer 6 or 7, allows remote attackers to inject arbitrary web script or HTML via the PATHINFO to plugin/tag/...

4.3CVSS5.8AI score0.02221EPSS
Exploits1References6
Prion
Prion
added 2008/02/13 8:0 p.m.18 views

Cross site scripting

Cross-site scripting XSS vulnerability in the Freetag before 2.96 plugin for S9Y Serendipity, when using Internet Explorer 6 or 7, allows remote attackers to inject arbitrary web script or HTML via the PATHINFO to plugin/tag/...

4.3CVSS6.2AI score0.02221EPSS
Exploits1References6Affected Software1
Cvelist
Cvelist
added 2008/02/13 7:0 p.m.30 views

CVE-2008-0751

Cross-site scripting XSS vulnerability in the Freetag before 2.96 plugin for S9Y Serendipity, when using Internet Explorer 6 or 7, allows remote attackers to inject arbitrary web script or HTML via the PATHINFO to plugin/tag/...

5.8AI score0.02221EPSS
Exploits1References6
CVE
CVE
added 2008/02/13 7:0 p.m.53 views

CVE-2008-0751

CVE-2008-0751 : Cross-site scripting in the Freetag before 2.96 plugin for S9Y Serendipity. When using Internet Explorer 6/7, an attacker can inject arbitrary script/HTML via PATH_INFO to plugin/tag/. Root cause is an XSS vulnerability in the plugin handling PATH_INFO. Affected: Freetag plugin (v...

4.3CVSS5.8AI score0.02221EPSS
Exploits1References6Affected Software1
UbuntuCve
UbuntuCve
added 2007/12/11 8:46 p.m.16 views

CVE-2007-6205

Cross-site scripting XSS vulnerability in the remote RSS sidebar plugin serendipitypluginremoterss in S9Y Serendipity before 1.2.1 allows remote attackers to inject arbitrary web script or HTML via a link in an RSS feed...

4.3CVSS6AI score0.02464EPSS
Exploits2References1
Cvelist
Cvelist
added 2007/12/11 8:0 p.m.29 views

CVE-2007-6205

Cross-site scripting XSS vulnerability in the remote RSS sidebar plugin serendipitypluginremoterss in S9Y Serendipity before 1.2.1 allows remote attackers to inject arbitrary web script or HTML via a link in an RSS feed...

5.5AI score0.02464EPSS
Exploits2References11
CVE
CVE
added 2007/12/11 8:0 p.m.60 views

CVE-2007-6205

CVE-2007-6205 is a cross-site scripting (XSS) vulnerability in the remote RSS sidebar plugin (serendipity_plugin_remoterss) of S9Y Serendipity prior to 1.2.1. An attacker can inject arbitrary script/HTML via a link in an RSS feed. Public advisories (Debian DSA-1528-1, related OpenVAS/NVL) documen...

4.3CVSS5.4AI score0.02464EPSS
Exploits2References11Affected Software1
Prion
Prion
added 2006/04/20 6:6 p.m.18 views

Information disclosure

config.php in S9Y Serendipity 1.0 beta 2 allows remote attackers to inject arbitrary PHP code by editing values that are stored in config.php and later executed. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information...

7.5CVSS7.1AI score0.01423EPSS
Exploits1References2Affected Software1
NVD
NVD
added 2006/04/20 6:6 p.m.14 views

CVE-2006-1910

config.php in S9Y Serendipity 1.0 beta 2 allows remote attackers to inject arbitrary PHP code by editing values that are stored in config.php and later executed. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information...

7.5CVSS6.6AI score0.01423EPSS
Exploits1References2
CVE
CVE
added 2006/04/20 6:0 p.m.51 views

CVE-2006-1910

This CVE affects S9Y Serendipity 1.0 beta 2, where config.php values stored by the application can be edited to inject and later execute arbitrary PHP code. The underlying issue is PHP code execution triggered by manipulated config.php content, enabling remote code execution with likely impact to...

7.5CVSS6.6AI score0.01423EPSS
Exploits1References2Affected Software1
Cvelist
Cvelist
added 2006/04/20 6:0 p.m.17 views

CVE-2006-1910

config.php in S9Y Serendipity 1.0 beta 2 allows remote attackers to inject arbitrary PHP code by editing values that are stored in config.php and later executed. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information...

6.6AI score0.01423EPSS
Exploits1References2
Rows per page
Query Builder