CVE-2010-2957

Опубликовано: 10 сент. 2010

Источник: nvd

CVSS2: 2.6

EPSS Низкий

Описание

Cross-site scripting (XSS) vulnerability in Serendipity before 1.5.4, when "Remember me" logins are enabled, allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.

Ссылки

Уязвимые конфигурации

Конфигурация 1

Одно из

cpe:2.3:a:s9y:serendipity:*:*:*:*:*:*:*:*

Версия до 1.5.3 (включая)

cpe:2.3:a:s9y:serendipity:0.3:*:*:*:*:*:*:*

cpe:2.3:a:s9y:serendipity:0.4:*:*:*:*:*:*:*

cpe:2.3:a:s9y:serendipity:0.5:*:*:*:*:*:*:*

cpe:2.3:a:s9y:serendipity:0.5:pl1:*:*:*:*:*:*

cpe:2.3:a:s9y:serendipity:0.6:*:*:*:*:*:*:*

cpe:2.3:a:s9y:serendipity:0.6:pl1:*:*:*:*:*:*

cpe:2.3:a:s9y:serendipity:0.6:pl2:*:*:*:*:*:*

cpe:2.3:a:s9y:serendipity:0.6:pl3:*:*:*:*:*:*

cpe:2.3:a:s9y:serendipity:0.6:rc1:*:*:*:*:*:*

cpe:2.3:a:s9y:serendipity:0.6:rc2:*:*:*:*:*:*

cpe:2.3:a:s9y:serendipity:0.7:*:*:*:*:*:*:*

cpe:2.3:a:s9y:serendipity:0.7:beta1:*:*:*:*:*:*

cpe:2.3:a:s9y:serendipity:0.7:beta2:*:*:*:*:*:*

cpe:2.3:a:s9y:serendipity:0.7:beta3:*:*:*:*:*:*

cpe:2.3:a:s9y:serendipity:0.7:beta4:*:*:*:*:*:*

cpe:2.3:a:s9y:serendipity:0.7:rc1:*:*:*:*:*:*

cpe:2.3:a:s9y:serendipity:0.7.1:*:*:*:*:*:*:*

cpe:2.3:a:s9y:serendipity:0.8:*:*:*:*:*:*:*

cpe:2.3:a:s9y:serendipity:0.8:beta5:*:*:*:*:*:*

cpe:2.3:a:s9y:serendipity:0.8:beta6:*:*:*:*:*:*

cpe:2.3:a:s9y:serendipity:0.8:beta6_snapshot:*:*:*:*:*:*

cpe:2.3:a:s9y:serendipity:0.8.1:*:*:*:*:*:*:*

cpe:2.3:a:s9y:serendipity:0.8.2:*:*:*:*:*:*:*

cpe:2.3:a:s9y:serendipity:0.8.3:*:*:*:*:*:*:*

cpe:2.3:a:s9y:serendipity:0.8.4:*:*:*:*:*:*:*

cpe:2.3:a:s9y:serendipity:0.8.5:*:*:*:*:*:*:*

cpe:2.3:a:s9y:serendipity:0.9:*:*:*:*:*:*:*

cpe:2.3:a:s9y:serendipity:0.9.1:*:*:*:*:*:*:*

cpe:2.3:a:s9y:serendipity:1.0:*:*:*:*:*:*:*

cpe:2.3:a:s9y:serendipity:1.0:beta1:*:*:*:*:*:*

cpe:2.3:a:s9y:serendipity:1.0:beta2:*:*:*:*:*:*

cpe:2.3:a:s9y:serendipity:1.0:beta3:*:*:*:*:*:*

cpe:2.3:a:s9y:serendipity:1.0.1:*:*:*:*:*:*:*

cpe:2.3:a:s9y:serendipity:1.0.2:*:*:*:*:*:*:*

cpe:2.3:a:s9y:serendipity:1.0.3:*:*:*:*:*:*:*

cpe:2.3:a:s9y:serendipity:1.0.4:*:*:*:*:*:*:*

cpe:2.3:a:s9y:serendipity:1.1:*:*:*:*:*:*:*

cpe:2.3:a:s9y:serendipity:1.1:beta1:*:*:*:*:*:*

cpe:2.3:a:s9y:serendipity:1.1.1:*:*:*:*:*:*:*

cpe:2.3:a:s9y:serendipity:1.1.2:*:*:*:*:*:*:*

cpe:2.3:a:s9y:serendipity:1.1.3:*:*:*:*:*:*:*

cpe:2.3:a:s9y:serendipity:1.1.4:*:*:*:*:*:*:*

cpe:2.3:a:s9y:serendipity:1.2:*:*:*:*:*:*:*

cpe:2.3:a:s9y:serendipity:1.2:beta5:*:*:*:*:*:*

cpe:2.3:a:s9y:serendipity:1.2.1:*:*:*:*:*:*:*

cpe:2.3:a:s9y:serendipity:1.3:*:*:*:*:*:*:*

cpe:2.3:a:s9y:serendipity:1.3.1:*:*:*:*:*:*:*

cpe:2.3:a:s9y:serendipity:1.4:*:*:*:*:*:*:*

cpe:2.3:a:s9y:serendipity:1.4.1:*:*:*:*:*:*:*

cpe:2.3:a:s9y:serendipity:1.5:*:*:*:*:*:*:*

cpe:2.3:a:s9y:serendipity:1.5:beta1:*:*:*:*:*:*

cpe:2.3:a:s9y:serendipity:1.5.1:*:*:*:*:*:*:*

cpe:2.3:a:s9y:serendipity:1.5.2:*:*:*:*:*:*:*

EPSS

Процентиль: 52%

0.00285

Низкий

2.6 Low

CVSS2

Дефекты

CWE-79

Связанные уязвимости

CVE-2010-2957

ubuntu

больше 15 лет назад

Cross-site scripting (XSS) vulnerability in Serendipity before 1.5.4, when "Remember me" logins are enabled, allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.

CVE-2010-2957

debian

больше 15 лет назад

Cross-site scripting (XSS) vulnerability in Serendipity before 1.5.4, ...

GHSA-6hj3-wg93-qcgm

github

больше 3 лет назад

Cross-site scripting (XSS) vulnerability in Serendipity before 1.5.4, when "Remember me" logins are enabled, allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.

EPSS

Процентиль: 52%

0.00285

Низкий

2.6 Low

CVSS2

Дефекты

CWE-79