Security Advisories | Entries from May 2011

Warning: opendir(/var/www/html/web1/serendipity/plugins/serendipity_event_dpsyntaxhighlighter/sh/3.0.83.2/scripts/): failed to open dir: No such file or directory in /var/www/html/web1/serendipity/plugins/serendipity_event_dpsyntaxhighlighter/serendipity_event_dpsyntaxhighlighter.php on line 26

Warning: Invalid argument supplied for foreach() in /var/www/html/web1/serendipity/plugins/serendipity_event_dpsyntaxhighlighter/serendipity_event_dpsyntaxhighlighter.php on line 170
Skip to content

SSCHADV2011-004 - Cross-Site Scripting vulnerability in Serendipity Plugin "serendipity_event_freetag"

Posted by on Monday, May 30. 2011

Advisory:	XSS vulnerability in Serendipity Plugin "serendipity_event_freetag"
Advisory ID:	SSCHADV2011-004
Author:	Stefan Schurtz
Affected Software:	Successfully tested on: serendipity_event_freetag – version 3.21
Vendor URL:	http://www.s9y.org
Vendor Status:	Version 3.22 – Fix possible XSS
CVE-ID:	-

======================
Vulnerability Description:
======================

This is a Cross-Site Scripting vulnerability

==============
Technical Details:
==============

Continue reading "SSCHADV2011-004 - Cross-Site Scripting vulnerability in Serendipity Plugin "serendipity_event_freetag""

Sidebar

Calendar

Werbung

Exploit-DB updates by Offensive Security

[webapps] OpenClinic GA 5.247.01 - Path Traversal (Authenticated)

Monday, April 15. 2024

[webapps] OpenClinic GA 5.247.01 - Information Disclosure

Monday, April 15. 2024

[webapps] Jenkins 2.441 - Local File Inclusion

Monday, April 15. 2024

[webapps] djangorestframework-simplejwt 5.3.1 - Information Disclosure

Monday, April 15. 2024

[webapps] BMC Compuware iStrobe Web - 20.13 - Pre-auth RCE

Saturday, April 13. 2024

OpenBSD Journal

In -current, default write format for tar(1) changed to "pax"

Wednesday, April 17. 2024

OpenSMTPD 7.5.0p0 Released

Wednesday, April 10. 2024

20 years since "and we're just starting": undeadly.org turns 20 (2024-04-09)

Tuesday, April 9. 2024

OpenBSD 7.5 released

Friday, April 5. 2024

LibreSSL 3.8.4 and 3.9.1 released

Thursday, March 28. 2024

OpenSSH 9.7/9.7p1 released!

Tuesday, March 12. 2024

Game of Trees 0.97 released

Monday, March 11. 2024

LibreSSL versions 3.8.3 and 3.9.0 released

Sunday, March 10. 2024

OpenBGPD 8.4 released

Friday, March 8. 2024

Archives

Blog Administration

Open login screen

Imprint | Contact | Privacy Statement

Warning: opendir(/var/www/html/web1/serendipity/plugins/serendipity_event_dpsyntaxhighlighter/sh/3.0.83.2/scripts/): failed to open dir: No such file or directory in /var/www/html/web1/serendipity/plugins/serendipity_event_dpsyntaxhighlighter/serendipity_event_dpsyntaxhighlighter.php on line 26

Warning: Invalid argument supplied for foreach() in /var/www/html/web1/serendipity/plugins/serendipity_event_dpsyntaxhighlighter/serendipity_event_dpsyntaxhighlighter.php on line 170