Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
serendipity serendipity 1.1.3 vulnerabilities and exploits
(subscribe to this query)
445
VMScore
CVE-2007-4282
The "Extended properties for entries" (entryproperties) plugin in serendipity_event_entryproperties.php in Serendipity 1.1.3 allows remote authenticated users to bypass password protection and "deliver custom entryproperties settings to the Serendipity Frontend&quo...
Serendipity Serendipity 1.1.3
383
VMScore
CVE-2008-1476
Cross-site scripting (XSS) vulnerability in Serendipity (S9Y) prior to 1.3 allows remote malicious users to inject arbitrary web script or HTML via unspecified vectors related to received trackbacks.
Serendipity Serendipity 0.7
Serendipity Serendipity 0.7.1
Serendipity Serendipity 0.9
Serendipity Serendipity 0.9.1
Serendipity Serendipity 1.0
Serendipity Serendipity 1.1.2
Serendipity Serendipity 1.1.3
Serendipity Serendipity 0.8
Serendipity Serendipity 0.8.1
Serendipity Serendipity 1.0.1
Serendipity Serendipity 1.0.2
Serendipity Serendipity 1.1.4
Serendipity Serendipity 1.2
Serendipity Serendipity 0.5 Pl1
Serendipity Serendipity 0.6 Pl3
Serendipity Serendipity 0.3
Serendipity Serendipity 0.4
Serendipity Serendipity 0.8.2
Serendipity Serendipity 0.8.3
Serendipity Serendipity 1.0.3
Serendipity Serendipity 1.0.4
Serendipity Serendipity
435
VMScore
CVE-2008-1385
Cross-site scripting (XSS) vulnerability in the Top Referrers (aka referrer) plugin in Serendipity (S9Y) prior to 1.3.1 allows remote malicious users to inject arbitrary web script or HTML via the Referer HTTP header.
S9y Serendipity 0.7
S9y Serendipity 0.7.1
S9y Serendipity 1.0
S9y Serendipity 1.0.1
S9y Serendipity 1.1.3
S9y Serendipity 1.1.4
S9y Serendipity 0.8
S9y Serendipity 0.8.1
S9y Serendipity 0.8.2
S9y Serendipity 1.0.2
S9y Serendipity 1.0.3
S9y Serendipity 1.2
S9y Serendipity 1.2.1
S9y Serendipity 0.5 Pl1
S9y Serendipity 0.6 Pl3
S9y Serendipity 0.9
S9y Serendipity 0.9.1
S9y Serendipity 1.1.1
S9y Serendipity 1.1.2
S9y Serendipity 0.3
S9y Serendipity 0.4
S9y Serendipity 0.8.3
1 EDB exploit
534
VMScore
CVE-2009-4412
Unrestricted file upload vulnerability in Serendipity prior to 1.5 allows remote authenticated users to execute arbitrary code by uploading a file with an executable extension followed by a safe extension, then accessing it via a direct request to the file in an unspecified direc...
S9y Serendipity 1.1.4
S9y Serendipity 1.1.3
S9y Serendipity 0.9
S9y Serendipity 0.8.5
S9y Serendipity 0.5
S9y Serendipity 0.4
S9y Serendipity 0.3
S9y Serendipity 1.0.3
S9y Serendipity 1.1.1
S9y Serendipity 1.3
S9y Serendipity 1.4.1
S9y Serendipity 1.4
S9y Serendipity 1.1.2
S9y Serendipity 1.1
S9y Serendipity 0.8
S9y Serendipity 0.7.1
S9y Serendipity 0.8.1
S9y Serendipity 0.8.2
S9y Serendipity 1.3.1
S9y Serendipity
S9y Serendipity 1.0.4
S9y Serendipity 0.7
231
VMScore
CVE-2010-2957
Cross-site scripting (XSS) vulnerability in Serendipity prior to 1.5.4, when "Remember me" logins are enabled, allows remote malicious users to inject arbitrary web script or HTML via unspecified vectors.
S9y Serendipity 0.7
S9y Serendipity 1.0.4
S9y Serendipity 1.1.4
S9y Serendipity 1.1.1
S9y Serendipity 1.4
S9y Serendipity 1.2.1
S9y Serendipity 1.2
S9y Serendipity 1.0.2
S9y Serendipity 1.0.1
S9y Serendipity 1.0
S9y Serendipity 0.9
S9y Serendipity 0.8.5
S9y Serendipity 0.8.2
S9y Serendipity 1.1
S9y Serendipity 1.5.1
S9y Serendipity 0.5
S9y Serendipity 0.4
S9y Serendipity 0.3
S9y Serendipity 0.8
S9y Serendipity 0.6
S9y Serendipity 0.8.4
S9y Serendipity 0.9.1
383
VMScore
CVE-2008-0124
Cross-site scripting (XSS) vulnerability in Serendipity (S9Y) prior to 1.3-beta1 allows remote authenticated users to inject arbitrary web script or HTML via (1) the "Real name" field in Personal Settings, which is presented to readers of articles; or (2) a file upload,...
S9y Serendipity 0.3
S9y Serendipity 0.6 Pl3
S9y Serendipity 0.6 Rc1
S9y Serendipity 0.7 Beta4
S9y Serendipity 0.7 Rc1
S9y Serendipity 1.0.3
S9y Serendipity 1.0.4
S9y Serendipity 1.2.1
S9y Serendipity 1.2 Beta5
S9y Serendipity 0.5 Pl1
S9y Serendipity 0.6
S9y Serendipity 0.7.1
S9y Serendipity 0.7 Beta1
S9y Serendipity 0.8.2
S9y Serendipity 0.8 Beta 6 Snapshot
S9y Serendipity 1.1.1
S9y Serendipity 1.1.3
S9y Serendipity 0.6 Pl1
S9y Serendipity 0.6 Pl2
S9y Serendipity 0.7 Beta2
S9y Serendipity 0.7 Beta3
S9y Serendipity 0.8 Beta5
383
VMScore
CVE-2007-6205
Cross-site scripting (XSS) vulnerability in the remote RSS sidebar plugin (serendipity_plugin_remoterss) in S9Y Serendipity prior to 1.2.1 allows remote malicious users to inject arbitrary web script or HTML via a link in an RSS feed.
S9y Serendipity 0.4
S9y Serendipity 0.5
S9y Serendipity 0.7
S9y Serendipity 0.7.1
S9y Serendipity 0.8.1
S9y Serendipity 0.8.2
S9y Serendipity 0.8 Beta6
S9y Serendipity 0.9
S9y Serendipity 1.1.3
S9y Serendipity 1.1.4
S9y Serendipity 0.6 Pl1
S9y Serendipity 0.6 Pl2
S9y Serendipity 0.7 Beta3
S9y Serendipity 0.7 Beta4
S9y Serendipity 0.8.5
S9y Serendipity 0.8 Beta 5
S9y Serendipity 1.0.4
S9y Serendipity 1.0 Beta1
S9y Serendipity 0.5 Pl1
S9y Serendipity 0.6
S9y Serendipity 0.7 Beta1
S9y Serendipity 0.7 Beta2
435
VMScore
CVE-2013-5314
Cross-site scripting (XSS) vulnerability in serendipity_admin_image_selector.php in Serendipity 1.6.2 and previous versions allows remote malicious users to inject arbitrary web script or HTML via the serendipity[htmltarget] parameter.
S9y Serendipity 0.8.4
S9y Serendipity 0.8.3
S9y Serendipity 0.9.1
S9y Serendipity 1.0.3
S9y Serendipity 1.0.2
S9y Serendipity 1.5.3
S9y Serendipity 1.0.1
S9y Serendipity 1.3
S9y Serendipity 1.1.4
S9y Serendipity 1.1.1
S9y Serendipity 1.1.3
S9y Serendipity 0.7.1
S9y Serendipity 0.4
S9y Serendipity 0.3
S9y Serendipity 1.1
S9y Serendipity 1.3.1
S9y Serendipity 1.6
S9y Serendipity 0.8.5
S9y Serendipity 1.2.1
S9y Serendipity 0.7
S9y Serendipity 0.8.1
S9y Serendipity 0.8.2
1 EDB exploit
435
VMScore
CVE-2012-2331
Cross-site scripting (XSS) vulnerability in serendipity/serendipity_admin_image_selector.php in Serendipity prior to 1.6.1 allows remote malicious users to inject arbitrary web script or HTML via the serendipity[textarea] parameter. NOTE: this issue might be resultant from cross-...
S9y Serendipity
S9y Serendipity 0.9.1
S9y Serendipity 1.2.1
S9y Serendipity 0.7.1
S9y Serendipity 0.8.1
S9y Serendipity 1.3
S9y Serendipity 1.0
S9y Serendipity 1.1
S9y Serendipity 1.4
S9y Serendipity 0.7
S9y Serendipity 1.0.4
S9y Serendipity 1.1.4
S9y Serendipity 1.1.1
S9y Serendipity 1.5.1
S9y Serendipity 1.4.1
S9y Serendipity 0.4
S9y Serendipity 0.3
S9y Serendipity 0.9
S9y Serendipity 0.8.5
S9y Serendipity 0.8.4
S9y Serendipity 0.8.3
S9y Serendipity 0.8.2
1 EDB exploit
755
VMScore
CVE-2012-2332
SQL injection vulnerability in serendipity/serendipity_admin.php in Serendipity prior to 1.6.1 allows remote malicious users to execute arbitrary SQL commands via the serendipity[plugin_to_conf] parameter. NOTE: this issue might be resultant from cross-site request forgery (CSRF)...
S9y Serendipity 0.8.4
S9y Serendipity 0.9.1
S9y Serendipity 1.1.1
S9y Serendipity 0.7.1
S9y Serendipity 1.5.4
S9y Serendipity 1.5.3
S9y Serendipity 0.4
S9y Serendipity 1.1
S9y Serendipity 1.2.1
S9y Serendipity 1.2
S9y Serendipity 0.7
S9y Serendipity 1.0.4
S9y Serendipity 1.3
S9y Serendipity 1.1.2
S9y Serendipity 1.0
S9y Serendipity 1.5.1
S9y Serendipity 1.4.1
S9y Serendipity
S9y Serendipity 0.9
S9y Serendipity 0.8
S9y Serendipity 0.8.1
S9y Serendipity 1.6.1
1 EDB exploit
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
cross-site request forgery
CVE-2024-34351
CVE-2024-1076
CVE-2024-25522
CVE-2024-34547
CVE-2024-4644
unauthorized
remote
CVE-2024-4671
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
NEXT »