Описание
Cross-Site Scripting (XSS) in Xinha, as included in the Serendipity package before 1.5.5, allows remote attackers to execute arbitrary code in the image manager.
Пакеты
| Пакет | Статус | Версия исправления | Релиз | Тип |
|---|---|---|---|---|
| serendipity | removed | package | ||
| serendipity | not-affected | lenny | package | |
| serendipity | no-dsa | squeeze | package | |
| openacs | not-affected | package | ||
| dotlrn | not-affected | package |
Примечания
http://secunia.com/advisories/40669/
Связанные уязвимости
CVSS3: 9.8
ubuntu
около 6 лет назад
Cross-Site Scripting (XSS) in Xinha, as included in the Serendipity package before 1.5.5, allows remote attackers to execute arbitrary code in the image manager.
CVSS3: 9.8
nvd
около 6 лет назад
Cross-Site Scripting (XSS) in Xinha, as included in the Serendipity package before 1.5.5, allows remote attackers to execute arbitrary code in the image manager.
github
больше 3 лет назад
Cross-Site Scripting (XSS) in Xinha, as included in the Serendipity package before 1.5.5, allows remote attackers to execute arbitrary code in the image manager.