CVE Vulnerabilities

CVE-2005-1448

Published: May 03, 2005 | Modified: Sep 05, 2008
CVSS 3.x
N/A
Source:
NVD
CVSS 2.x
6.8 MEDIUM
AV:N/AC:M/Au:N/C:P/I:P/A:P
RedHat/V2
RedHat/V3
Ubuntu

Cross-site scripting (XSS) vulnerability in the BBCode plugin for Serendipity before 0.8 allows remote attackers to inject arbitrary web script or HTML via unknown vectors.

Affected Software

Name Vendor Start Version End Version
Serendipity S9y 0.8_beta5 0.8_beta5
Serendipity S9y 0.7 0.7
Serendipity S9y 0.7_beta1 0.7_beta1
Serendipity S9y 0.7.1 0.7.1
Serendipity S9y 0.7_beta3 0.7_beta3
Serendipity S9y 0.8_beta6 0.8_beta6
Serendipity S9y 0.7_beta4 0.7_beta4
Serendipity S9y 0.7_beta2 0.7_beta2
Serendipity S9y 0.7_rc1 0.7_rc1

References