SSCHADV2011-016 - Serendipity freetag plugin 'serendipity[tagview]' Cross-Site Scripting vulnerability
Advisory: |
Serendipity freetag plugin ‘serendipity[tagview]’ Cross-Site Scripting vulnerability
|
Advisory ID: | SSCHADV2011-016 |
Author: |
Stefan Schurtz
|
Affected Software: | Successfully tested on Serendipity 1.5.5 |
Vendor URL: | |
Vendor Status: | fixed |
CVE-ID: | - |
======================
Vulnerability Description:
======================
The freetag plugin parameter "serendipity[tagview]" in Serendipity backend is prone to a Cross-Site Scripting vulnerability
Vulnerability Description:
======================
The freetag plugin parameter "serendipity[tagview]" in Serendipity backend is prone to a Cross-Site Scripting vulnerability