Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
s9y serendipity 0.7 beta1 vulnerabilities and exploits
(subscribe to this query)
755
VMScore
CVE-2004-2158
SQL injection vulnerability in Serendipity 0.7-beta1 allows remote malicious users to execute arbitrary SQL commands via the entry_id parameter to (1) exit.php or (2) comment.php.
S9y Serendipity 0.7 Beta1
1 EDB exploit
383
VMScore
CVE-2008-0124
Cross-site scripting (XSS) vulnerability in Serendipity (S9Y) prior to 1.3-beta1 allows remote authenticated users to inject arbitrary web script or HTML via (1) the "Real name" field in Personal Settings, which is presented to readers of articles; or (2) a file upload,...
S9y Serendipity 0.3
S9y Serendipity 0.6 Pl3
S9y Serendipity 0.6 Rc1
S9y Serendipity 0.7 Beta4
S9y Serendipity 0.7 Rc1
S9y Serendipity 1.0.3
S9y Serendipity 1.0.4
S9y Serendipity 1.2.1
S9y Serendipity 1.2 Beta5
S9y Serendipity 0.5 Pl1
S9y Serendipity 0.6
S9y Serendipity 0.7.1
S9y Serendipity 0.7 Beta1
S9y Serendipity 0.8.2
S9y Serendipity 0.8 Beta 6 Snapshot
S9y Serendipity 1.1.1
S9y Serendipity 1.1.3
S9y Serendipity 0.6 Pl1
S9y Serendipity 0.6 Pl2
S9y Serendipity 0.7 Beta2
S9y Serendipity 0.7 Beta3
S9y Serendipity 0.8 Beta5
383
VMScore
CVE-2004-2157
Cross-site scripting (XSS) vulnerability in Comment.php in Serendipity 0.7 beta1, and possibly other versions prior to 0.7-beta3, allows remote malicious users to inject arbitrary HTML and PHP code via the (1) email or (2) username field.
S9y Serendipity 0.7 Beta1
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
man-in-the-middle
CVE-2024-34558
CVE-2024-32674
CVE-2024-34351
XPath injection
CVE-2023-45866
CVE-2024-25528
CVE-2024-25517
path traversal
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started