Serendipity@0.7 rc1 Security Vulnerabilities and Issues — Serendipity@0.7 rc1 CVE List

Lucene search

S9ySerendipity0.7 rc1

5 matches found

CVE•added 2005/04/16 4:0 a.m.•44 views

CVE-2005-1134

SQL injection vulnerability in exit.php for Serendipity 0.8 and earlier allows remote attackers to execute arbitrary SQL commands via the (1) url_id or (2) entry_id parameters.

7.5CVSS8.4AI score0.02264EPSS

CVE•added 2005/05/03 4:0 a.m.•41 views

CVE-2005-1448

Cross-site scripting (XSS) vulnerability in the BBCode plugin for Serendipity before 0.8 allows remote attackers to inject arbitrary web script or HTML via unknown vectors.

6.8CVSS5.8AI score0.01009EPSS

CVE•added 2005/10/25 4:0 a.m.•38 views

CVE-2004-2525

Cross-site scripting (XSS) vulnerability in compat.php in Serendipity before 0.7.1 allows remote attackers to inject arbitrary web script or HTML via the searchTerm variable.

4.3CVSS5.7AI score0.00572EPSS

CVE•added 2005/05/03 4:0 a.m.•30 views

CVE-2005-1449

Unknown vulnerability in serendipity_config_local.inc.php for Serendipity before 0.8 has unknown impact.

10CVSS7AI score0.00376EPSS

CVE•added 2005/05/03 4:0 a.m.•30 views

CVE-2005-1451

The media manager in Serendipity before 0.8 allows remote attackers to upload and execute arbitrary (1) .php or (2) .shtml files.

7.5CVSS7.8AI score0.00717EPSS