Showing 1 - 2 of 2

CVE-2008-0124

Status Candidate

Overview

Cross-site scripting (XSS) vulnerability in Serendipity (S9Y) before 1.3-beta1 allows remote authenticated users to inject arbitrary web script or HTML via (1) the "Real name" field in Personal Settings, which is presented to readers of articles; or (2) a file upload, as demonstrated by a .htm, .html, or .js file.

Related Files

Debian Linux Security Advisory 1528-1: Posted Mar 24, 2008; Authored by Debian | Site debian.org; Debian Security Advisory 1528-1 - Peter Huwe and Hanno Boeck discovered that Serendipity, a weblog manager, did not properly sanitise input to several scripts which allowed for cross site scripting.; tags | advisory, xss; systems | linux, debian; advisories | CVE-2007-6205, CVE-2008-0124; SHA-256 | 8b7a5884ad63c22596a7bb066cab316ce9b42d0c0b7f165a02256cd5357ff4aa; Download | Favorite | View

CVE-2008-0124-s9y.txt: Posted Feb 26, 2008; Authored by Hanno Boeck | Site hboeck.de; Serendipity (S9Y) is vulnerable to cross site scripting vulnerabilities.; tags | advisory, vulnerability, xss; advisories | CVE-2008-0124; SHA-256 | dd63fb188152a551ba836b956d929e9d741646329f28f1ee2f401f93732ec998; Download | Favorite | View

Page 1 of 1 Back 1 Next

Top Authors In Last 30 Days

Red Hat 219 files
indoushka 83 files
Ubuntu 79 files
Gentoo 36 files
Jasper Nota 25 files
Willem Westerhof 19 files
Debian 18 files
Jim Blankendaal 11 files
Martijn Baalman 9 files
Apple 9 files

File Archives

Systems

AIX (429)
Apple (2,099)
BSD (377)
CentOS (58)
Cisco (1,927)
Debian (7,096)
Fedora (1,693)
FreeBSD (1,246)
Gentoo (4,567)
HPUX (880)
iOS (378)
iPhone (108)
IRIX (220)
Juniper (69)
Linux (50,707)
Mac OS X (691)
Mandriva (3,105)
NetBSD (256)
OpenBSD (489)
RedHat (16,485)
Slackware (941)
Solaris (1,611)
SUSE (1,444)
Ubuntu (9,737)
UNIX (9,435)
UnixWare (187)
Windows (6,672)
Other

CVE-2008-0124

Overview

Related Files

File Archive:

August 2024

Top Authors In Last 30 Days

File Tags

File Archives

Systems