Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

nvd логотип

CVE-2008-1476

Опубликовано: 24 мар. 2008
Источник: nvd
CVSS2: 4.3
EPSS Низкий

Описание

Cross-site scripting (XSS) vulnerability in Serendipity (S9Y) before 1.3 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors related to received trackbacks.

Ссылки

Уязвимые конфигурации

Конфигурация 1

Одно из

cpe:2.3:a:serendipity:serendipity:*:*:*:*:*:*:*:*
Версия до 1.2.1 (включая)
cpe:2.3:a:serendipity:serendipity:0.3:*:*:*:*:*:*:*
cpe:2.3:a:serendipity:serendipity:0.4:*:*:*:*:*:*:*
cpe:2.3:a:serendipity:serendipity:0.5_pl1:*:*:*:*:*:*:*
cpe:2.3:a:serendipity:serendipity:0.6_pl3:*:*:*:*:*:*:*
cpe:2.3:a:serendipity:serendipity:0.7:*:*:*:*:*:*:*
cpe:2.3:a:serendipity:serendipity:0.7.1:*:*:*:*:*:*:*
cpe:2.3:a:serendipity:serendipity:0.8:*:*:*:*:*:*:*
cpe:2.3:a:serendipity:serendipity:0.8.1:*:*:*:*:*:*:*
cpe:2.3:a:serendipity:serendipity:0.8.2:*:*:*:*:*:*:*
cpe:2.3:a:serendipity:serendipity:0.8.3:*:*:*:*:*:*:*
cpe:2.3:a:serendipity:serendipity:0.8.4:*:*:*:*:*:*:*
cpe:2.3:a:serendipity:serendipity:0.8.5:*:*:*:*:*:*:*
cpe:2.3:a:serendipity:serendipity:0.9:*:*:*:*:*:*:*
cpe:2.3:a:serendipity:serendipity:0.9.1:*:*:*:*:*:*:*
cpe:2.3:a:serendipity:serendipity:1.0:*:*:*:*:*:*:*
cpe:2.3:a:serendipity:serendipity:1.0.1:*:*:*:*:*:*:*
cpe:2.3:a:serendipity:serendipity:1.0.2:*:*:*:*:*:*:*
cpe:2.3:a:serendipity:serendipity:1.0.3:*:*:*:*:*:*:*
cpe:2.3:a:serendipity:serendipity:1.0.4:*:*:*:*:*:*:*
cpe:2.3:a:serendipity:serendipity:1.1:*:*:*:*:*:*:*
cpe:2.3:a:serendipity:serendipity:1.1.1:*:*:*:*:*:*:*
cpe:2.3:a:serendipity:serendipity:1.1.2:*:*:*:*:*:*:*
cpe:2.3:a:serendipity:serendipity:1.1.3:*:*:*:*:*:*:*
cpe:2.3:a:serendipity:serendipity:1.1.4:*:*:*:*:*:*:*
cpe:2.3:a:serendipity:serendipity:1.2:*:*:*:*:*:*:*

EPSS

Процентиль: 66%
0.00516
Низкий

4.3 Medium

CVSS2

Дефекты

CWE-79

Связанные уязвимости

ubuntu логотип

CVE-2008-1476

ubuntu
почти 18 лет назад

Cross-site scripting (XSS) vulnerability in Serendipity (S9Y) before 1.3 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors related to received trackbacks.

debian логотип

CVE-2008-1476

debian
почти 18 лет назад

Cross-site scripting (XSS) vulnerability in Serendipity (S9Y) before 1 ...

github логотип

GHSA-q59r-3f73-73rw

github
почти 4 года назад

Cross-site scripting (XSS) vulnerability in Serendipity (S9Y) before 1.3 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors related to received trackbacks.

EPSS

Процентиль: 66%
0.00516
Низкий

4.3 Medium

CVSS2

Дефекты

CWE-79