Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

debian логотип

CVE-2004-2157

Опубликовано: 31 дек. 2004
Источник: debian
EPSS Низкий

Описание

Cross-site scripting (XSS) vulnerability in Comment.php in Serendipity 0.7 beta1, and possibly other versions before 0.7-beta3, allows remote attackers to inject arbitrary HTML and PHP code via the (1) email or (2) username field.

Пакеты

ПакетСтатусВерсия исправленияРелизТип
serendipityfixed1.0-1package

EPSS

Процентиль: 72%
0.00721
Низкий

Связанные уязвимости

nvd логотип

CVE-2004-2157

nvd
больше 20 лет назад

Cross-site scripting (XSS) vulnerability in Comment.php in Serendipity 0.7 beta1, and possibly other versions before 0.7-beta3, allows remote attackers to inject arbitrary HTML and PHP code via the (1) email or (2) username field.

github логотип

GHSA-8xf5-j5w3-2jx2

github
больше 3 лет назад

Cross-site scripting (XSS) vulnerability in Comment.php in Serendipity 0.7 beta1, and possibly other versions before 0.7-beta3, allows remote attackers to inject arbitrary HTML and PHP code via the (1) email or (2) username field.

EPSS

Процентиль: 72%
0.00721
Низкий