Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
s9y serendipity 0.7 beta1 vulnerabilities and exploits
(subscribe to this query)
755
VMScore
CVE-2004-2158
SQL injection vulnerability in Serendipity 0.7-beta1 allows remote malicious users to execute arbitrary SQL commands via the entry_id parameter to (1) exit.php or (2) comment.php.
S9y Serendipity 0.7 Beta1
1 EDB exploit
383
VMScore
CVE-2008-0124
Cross-site scripting (XSS) vulnerability in Serendipity (S9Y) prior to 1.3-beta1 allows remote authenticated users to inject arbitrary web script or HTML via (1) the "Real name" field in Personal Settings, which is presented to readers of articles; or (2) a file upload,...
S9y Serendipity 0.3
S9y Serendipity 0.6 Pl3
S9y Serendipity 0.6 Rc1
S9y Serendipity 0.7 Beta4
S9y Serendipity 0.7 Rc1
S9y Serendipity 1.0.3
S9y Serendipity 1.0.4
S9y Serendipity 1.2.1
S9y Serendipity 1.2 Beta5
S9y Serendipity 0.5 Pl1
S9y Serendipity 0.6
S9y Serendipity 0.7.1
S9y Serendipity 0.7 Beta1
S9y Serendipity 0.8.2
S9y Serendipity 0.8 Beta 6 Snapshot
S9y Serendipity 1.1.1
S9y Serendipity 1.1.3
S9y Serendipity 0.6 Pl1
S9y Serendipity 0.6 Pl2
S9y Serendipity 0.7 Beta2
S9y Serendipity 0.7 Beta3
S9y Serendipity 0.8 Beta5
383
VMScore
CVE-2004-2157
Cross-site scripting (XSS) vulnerability in Comment.php in Serendipity 0.7 beta1, and possibly other versions prior to 0.7-beta3, allows remote malicious users to inject arbitrary HTML and PHP code via the (1) email or (2) username field.
S9y Serendipity 0.7 Beta1
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2023-49223
CVE-2024-0044
information disclosure
CVE-2024-35753
HTML injection
CVE-2024-21306
CVE-2024-35733
SQL injection
CVE-2024-35732
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started