SSCHADV2011-017 - Serendipity Plugin 'Karma Ranking' Multiple Cross-Site Scripting vulnerabilities
Advisory:
|
Serendipity Plugin ‘Karma Ranking’ Multiple Cross-Site Scripting vulnerabilities
|
Advisory ID:
|
SSCHADV2011-017
|
Author:
|
Stefan Schurtz
|
Affected Software:
|
Successfully tested on Serendipity 1.5.5 with Karma Ranking Plugin version 1.1
|
Vendor URL:
|
|
Vendor Status:
|
fixed
|
CVE-ID:
|
-
|
======================
Vulnerability Description:
======================
Multiple parameters in the Karma Ranking plugin (Serendipity backend) are prone to a Cross-Site Scripting vulnerability
Vulnerability Description:
======================
Multiple parameters in the Karma Ranking plugin (Serendipity backend) are prone to a Cross-Site Scripting vulnerability