VYPR

Vendor CVEs

Serendipity

All CVEs

54 total · sorted by risk
  • CVE-2005-1451May 3, 2005
    risk 0.00cvss epss 0.02

    The media manager in Serendipity before 0.8 allows remote attackers to upload and execute arbitrary (1) .php or (2) .shtml files.

  • CVE-2005-1448May 3, 2005
    risk 0.00cvss epss 0.01

    Cross-site scripting (XSS) vulnerability in the BBCode plugin for Serendipity before 0.8 allows remote attackers to inject arbitrary web script or HTML via unknown vectors.

  • CVE-2004-2157Dec 31, 2004
    risk 0.00cvss epss 0.02

    Cross-site scripting (XSS) vulnerability in Comment.php in Serendipity 0.7 beta1, and possibly other versions before 0.7-beta3, allows remote attackers to inject arbitrary HTML and PHP code via the (1) email or (2) username field.

  • CVE-2004-2525Dec 31, 2004
    risk 0.00cvss epss 0.01

    Cross-site scripting (XSS) vulnerability in compat.php in Serendipity before 0.7.1 allows remote attackers to inject arbitrary web script or HTML via the searchTerm variable.

Page 2 of 2