Cross-site scripting (XSS) vulnerability in Serendipity before 1.5.4, when “Remember me” logins are enabled, allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.
CPE | Name | Operator | Version |
---|---|---|---|
serendipity | eq | 0.5 | |
serendipity | eq | 1.0.3 | |
serendipity | eq | 1.3 | |
serendipity | eq | 1.1.4 | |
serendipity | eq | 0.4 | |
serendipity | eq | 0.8 beta6 | |
serendipity | eq | 1.0 beta2 | |
serendipity | eq | 0.8.5 | |
serendipity | eq | 0.7 | |
serendipity | eq | 1.1.2 |