3 matches found
Cross site scripting
Cross-site scripting XSS vulnerability in the Top Referrers aka referrer plugin in Serendipity S9Y before 1.3.1 allows remote attackers to inject arbitrary web script or HTML via the Referer HTTP header...
CVE-2008-1385
Cross-site scripting XSS vulnerability in the Top Referrers aka referrer plugin in Serendipity S9Y before 1.3.1 allows remote attackers to inject arbitrary web script or HTML via the Referer HTTP header...
CVE-2008-1385
CVE-2008-1385 is an XSS vulnerability in Serendipity's Top Referrers (referrer) plugin prior to 1.3.1. The referrer string is not escaped, allowing injection via the Referer header and leading to arbitrary script/HTML execution. The issue is documented with a CVSS v2 base score of 4.3 (Medium). R...