8 matches found
Serendipity 安全漏洞
Serendipity is a PHP-based blog system developed by the Serendipity team. This system supports the creation of online diaries, blogs, and web pages. Versions of Serendipity 2.6-beta2 and earlier contained security vulnerabilities. These vulnerabilities stemmed from the email sending feature not...
CVE-2023-53932
CVE-2023-53932 affects Serendipity 2.4.0. The vulnerability is a stored cross-site scripting issue where an authenticated user can craft blog entries containing a JavaScript payload, which executes when other users view the post. The root cause is improper sanitization/handling of blog entry cont...
Serendipity 代码问题漏洞
Serendipity is a PHP-based blogging system by the Serendipity team. The system supports the creation of online journals, blogs, web pages, and more. A code issue vulnerability exists in Serendipity version 2.4.0, which stems from an authenticated attacker being able to upload malicious PHP files...
Serendipity 代码问题漏洞
Serendipity is a PHP-based blogging system by the Serendipity team. The system supports the creation of online journals, blogs, web pages, and more. A code issue vulnerability exists in Serendipity version 2.5.0, which stems from an authenticated administrator being able to upload malicious PHP...
Serendipity Code Issue Vulnerability
Serendipity is a PHP-based blogging system from the Serendipity team. The system supports the creation of online journals, blogs, web pages and more. A code issue vulnerability exists in Serendipity versions prior to 2.3.4 Windows that stems from the program failing to properly validate filenames...
Serendipity Open Redirect Vulnerability
Serendipity is a PHP-based blogging system developed by Serendipity team. The system supports the creation of online journals, blogs, web pages and more. An open redirection vulnerability exists in comment.php in Serendipity in versions 2.0.5 and earlier, which allows remote attackers to redirect...
Serendipity Blog vuln
I found this while auditing serendipty blog. You need a blog account which isnt that big of deal just google all the sites that give out free blogs for this to work. After you get hte blog account you go into your admin panel where there will be config options. The mysql details are editable from...
Serendipity <= 1.0-beta2 Blog Configuration PHP Code Injection
Binary data 3518.prm...