Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

nvd логотип

CVE-2007-6205

Опубликовано: 11 дек. 2007
Источник: nvd
CVSS2: 4.3
EPSS Низкий

Описание

Cross-site scripting (XSS) vulnerability in the remote RSS sidebar plugin (serendipity_plugin_remoterss) in S9Y Serendipity before 1.2.1 allows remote attackers to inject arbitrary web script or HTML via a link in an RSS feed.

Ссылки

Уязвимые конфигурации

Конфигурация 1

Одно из

cpe:2.3:a:s9y:serendipity:0.3:*:*:*:*:*:*:*
cpe:2.3:a:s9y:serendipity:0.4:*:*:*:*:*:*:*
cpe:2.3:a:s9y:serendipity:0.5:*:*:*:*:*:*:*
cpe:2.3:a:s9y:serendipity:0.5_pl1:*:*:*:*:*:*:*
cpe:2.3:a:s9y:serendipity:0.6:*:*:*:*:*:*:*
cpe:2.3:a:s9y:serendipity:0.6_pl1:*:*:*:*:*:*:*
cpe:2.3:a:s9y:serendipity:0.6_pl2:*:*:*:*:*:*:*
cpe:2.3:a:s9y:serendipity:0.6_pl3:*:*:*:*:*:*:*
cpe:2.3:a:s9y:serendipity:0.6_rc1:*:*:*:*:*:*:*
cpe:2.3:a:s9y:serendipity:0.6_rc2:*:*:*:*:*:*:*
cpe:2.3:a:s9y:serendipity:0.7:*:*:*:*:*:*:*
cpe:2.3:a:s9y:serendipity:0.7.1:*:*:*:*:*:*:*
cpe:2.3:a:s9y:serendipity:0.7_beta1:*:*:*:*:*:*:*
cpe:2.3:a:s9y:serendipity:0.7_beta2:*:*:*:*:*:*:*
cpe:2.3:a:s9y:serendipity:0.7_beta3:*:*:*:*:*:*:*
cpe:2.3:a:s9y:serendipity:0.7_beta4:*:*:*:*:*:*:*
cpe:2.3:a:s9y:serendipity:0.7_rc1:*:*:*:*:*:*:*
cpe:2.3:a:s9y:serendipity:0.8:*:*:*:*:*:*:*
cpe:2.3:a:s9y:serendipity:0.8.1:*:*:*:*:*:*:*
cpe:2.3:a:s9y:serendipity:0.8.2:*:*:*:*:*:*:*
cpe:2.3:a:s9y:serendipity:0.8.3:*:*:*:*:*:*:*
cpe:2.3:a:s9y:serendipity:0.8.4:*:*:*:*:*:*:*
cpe:2.3:a:s9y:serendipity:0.8.5:*:*:*:*:*:*:*
cpe:2.3:a:s9y:serendipity:0.8_beta_5:*:*:*:*:*:*:*
cpe:2.3:a:s9y:serendipity:0.8_beta_6:*:*:*:*:*:*:*
cpe:2.3:a:s9y:serendipity:0.8_beta5:*:*:*:*:*:*:*
cpe:2.3:a:s9y:serendipity:0.8_beta6:*:*:*:*:*:*:*
cpe:2.3:a:s9y:serendipity:0.9:*:*:*:*:*:*:*
cpe:2.3:a:s9y:serendipity:0.9.1:*:*:*:*:*:*:*
cpe:2.3:a:s9y:serendipity:1.0.3:*:*:*:*:*:*:*
cpe:2.3:a:s9y:serendipity:1.0.4:*:*:*:*:*:*:*
cpe:2.3:a:s9y:serendipity:1.0_beta1:*:*:*:*:*:*:*
cpe:2.3:a:s9y:serendipity:1.0_beta2:*:*:*:*:*:*:*
cpe:2.3:a:s9y:serendipity:1.0_beta3:*:*:*:*:*:*:*
cpe:2.3:a:s9y:serendipity:1.1.1:*:*:*:*:*:*:*
cpe:2.3:a:s9y:serendipity:1.1.3:*:*:*:*:*:*:*
cpe:2.3:a:s9y:serendipity:1.1.4:*:*:*:*:*:*:*

EPSS

Процентиль: 68%
0.00585
Низкий

4.3 Medium

CVSS2

Дефекты

CWE-79

Связанные уязвимости

ubuntu логотип

CVE-2007-6205

ubuntu
почти 18 лет назад

Cross-site scripting (XSS) vulnerability in the remote RSS sidebar plugin (serendipity_plugin_remoterss) in S9Y Serendipity before 1.2.1 allows remote attackers to inject arbitrary web script or HTML via a link in an RSS feed.

debian логотип

CVE-2007-6205

debian
почти 18 лет назад

Cross-site scripting (XSS) vulnerability in the remote RSS sidebar plu ...

github логотип

GHSA-vwwp-xxc4-56gp

github
больше 3 лет назад

Cross-site scripting (XSS) vulnerability in the remote RSS sidebar plugin (serendipity_plugin_remoterss) in S9Y Serendipity before 1.2.1 allows remote attackers to inject arbitrary web script or HTML via a link in an RSS feed.

EPSS

Процентиль: 68%
0.00585
Низкий

4.3 Medium

CVSS2

Дефекты

CWE-79