Lucene search
S9ySerendipity0.7.1
5 matches found
CVE-2005-1448
Cross-site scripting (XSS) vulnerability in the BBCode plugin for Serendipity before 0.8 allows remote attackers to inject arbitrary web script or HTML via unknown vectors.
6.8CVSS5.8AI score0.01009EPSS
CVE-2005-1452
Serendipity before 0.8 allows Chief users to "hide plugins installed by other users."
10CVSS6.9AI score0.00376EPSS
CVE-2005-1450
Unknown vulnerability in "the function used to validate path-names for uploading media" in Serendipity before 0.8 has unknown impact.
7.5CVSS7AI score0.00527EPSS
CVE-2005-1449
Unknown vulnerability in serendipity_config_local.inc.php for Serendipity before 0.8 has unknown impact.
10CVSS7AI score0.00376EPSS
CVE-2005-1451
The media manager in Serendipity before 0.8 allows remote attackers to upload and execute arbitrary (1) .php or (2) .shtml files.
7.5CVSS7.8AI score0.00717EPSS