SSCHADV2011-016 - Serendipity freetag plugin 'serendipity[tagview]' Cross-Site Scripting vulnerability
| Advisory: |
Serendipity freetag plugin ‘serendipity[tagview]’ Cross-Site Scripting vulnerability
|
| Advisory ID: | SSCHADV2011-016 |
| Author: |
Stefan Schurtz
|
| Affected Software: | Successfully tested on Serendipity 1.5.5 |
| Vendor URL: | |
| Vendor Status: | fixed |
| CVE-ID: | - |
======================
Vulnerability Description:
======================
The freetag plugin parameter "serendipity[tagview]" in Serendipity backend is prone to a Cross-Site Scripting vulnerability
Vulnerability Description:
======================
The freetag plugin parameter "serendipity[tagview]" in Serendipity backend is prone to a Cross-Site Scripting vulnerability