6.8
CVSSv2

CVE-2005-1448

Published: 03/05/2005 Updated: 05/09/2008
CVSS v2 Base Score: 6.8 | Impact Score: 6.4 | Exploitability Score: 8.6
VMScore: 605
Vector: AV:N/AC:M/Au:N/C:P/I:P/A:P

Vulnerability Summary

Cross-site scripting (XSS) vulnerability in the BBCode plugin for Serendipity prior to 0.8 allows remote attackers to inject arbitrary web script or HTML via unknown vectors.

Affected Products

Vendor Product Versions
S9ySerendipity0.7, 0.7.1, 0.7 Beta1, 0.7 Beta2, 0.7 Beta3, 0.7 Beta4, 0.7 Rc1, 0.8 Beta5, 0.8 Beta6