Cross-site scripting (XSS) vulnerability in the BBCode plugin for Serendipity before 0.8 allows remote attackers to inject arbitrary web script or HTML via unknown vectors.
Name | Vendor | Start Version | End Version |
---|---|---|---|
Serendipity | S9y | 0.8_beta5 | 0.8_beta5 |
Serendipity | S9y | 0.7 | 0.7 |
Serendipity | S9y | 0.7_beta1 | 0.7_beta1 |
Serendipity | S9y | 0.7.1 | 0.7.1 |
Serendipity | S9y | 0.7_beta3 | 0.7_beta3 |
Serendipity | S9y | 0.8_beta6 | 0.8_beta6 |
Serendipity | S9y | 0.7_beta4 | 0.7_beta4 |
Serendipity | S9y | 0.7_beta2 | 0.7_beta2 |
Serendipity | S9y | 0.7_rc1 | 0.7_rc1 |