Shodan
Vulnerabilities
Vulnerable Software

Vulnerability Details CVE-2008-0124

Cross-site scripting (XSS) vulnerability in Serendipity (S9Y) before 1.3-beta1 allows remote authenticated users to inject arbitrary web script or HTML via (1) the "Real name" field in Personal Settings, which is presented to readers of articles; or (2) a file upload, as demonstrated by a .htm, .html, or .js file.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.006
EPSS Ranking 70.0%
CVSS Severity
CVSS v2 Score 4.3
References
Products affected by CVE-2008-0124
  • S9y » Serendipity » Version: 0.3
    cpe:2.3:a:s9y:serendipity:0.3
  • S9y » Serendipity » Version: 0.4
    cpe:2.3:a:s9y:serendipity:0.4
  • S9y » Serendipity » Version: 0.5
    cpe:2.3:a:s9y:serendipity:0.5
  • S9y » Serendipity » Version: 0.5_pl1
    cpe:2.3:a:s9y:serendipity:0.5_pl1
  • S9y » Serendipity » Version: 0.6
    cpe:2.3:a:s9y:serendipity:0.6
  • S9y » Serendipity » Version: 0.6_pl1
    cpe:2.3:a:s9y:serendipity:0.6_pl1
  • S9y » Serendipity » Version: 0.6_pl2
    cpe:2.3:a:s9y:serendipity:0.6_pl2
  • S9y » Serendipity » Version: 0.6_pl3
    cpe:2.3:a:s9y:serendipity:0.6_pl3
  • S9y » Serendipity » Version: 0.6_rc1
    cpe:2.3:a:s9y:serendipity:0.6_rc1
  • S9y » Serendipity » Version: 0.6_rc2
    cpe:2.3:a:s9y:serendipity:0.6_rc2
  • S9y » Serendipity » Version: 0.7
    cpe:2.3:a:s9y:serendipity:0.7
  • S9y » Serendipity » Version: 0.7.1
    cpe:2.3:a:s9y:serendipity:0.7.1
  • S9y » Serendipity » Version: 0.7_beta1
    cpe:2.3:a:s9y:serendipity:0.7_beta1
  • S9y » Serendipity » Version: 0.7_beta2
    cpe:2.3:a:s9y:serendipity:0.7_beta2
  • S9y » Serendipity » Version: 0.7_beta3
    cpe:2.3:a:s9y:serendipity:0.7_beta3
  • S9y » Serendipity » Version: 0.7_beta4
    cpe:2.3:a:s9y:serendipity:0.7_beta4
  • S9y » Serendipity » Version: 0.7_rc1
    cpe:2.3:a:s9y:serendipity:0.7_rc1
  • S9y » Serendipity » Version: 0.8
    cpe:2.3:a:s9y:serendipity:0.8
  • S9y » Serendipity » Version: 0.8.1
    cpe:2.3:a:s9y:serendipity:0.8.1
  • S9y » Serendipity » Version: 0.8.2
    cpe:2.3:a:s9y:serendipity:0.8.2
  • S9y » Serendipity » Version: 0.8_beta5
    cpe:2.3:a:s9y:serendipity:0.8_beta5
  • S9y » Serendipity » Version: 0.8_beta6
    cpe:2.3:a:s9y:serendipity:0.8_beta6
  • S9y » Serendipity » Version: 0.8_beta_6_snapshot
    cpe:2.3:a:s9y:serendipity:0.8_beta_6_snapshot
  • S9y » Serendipity » Version: 0.9.1
    cpe:2.3:a:s9y:serendipity:0.9.1
  • S9y » Serendipity » Version: 1.0.3
    cpe:2.3:a:s9y:serendipity:1.0.3
  • S9y » Serendipity » Version: 1.0.4
    cpe:2.3:a:s9y:serendipity:1.0.4
  • S9y » Serendipity » Version: 1.0_beta2
    cpe:2.3:a:s9y:serendipity:1.0_beta2
  • S9y » Serendipity » Version: 1.0_beta3
    cpe:2.3:a:s9y:serendipity:1.0_beta3
  • S9y » Serendipity » Version: 1.1.1
    cpe:2.3:a:s9y:serendipity:1.1.1
  • S9y » Serendipity » Version: 1.1.3
    cpe:2.3:a:s9y:serendipity:1.1.3
  • S9y » Serendipity » Version: 1.1.4
    cpe:2.3:a:s9y:serendipity:1.1.4
  • S9y » Serendipity » Version: 1.2
    cpe:2.3:a:s9y:serendipity:1.2
  • S9y » Serendipity » Version: 1.2.1
    cpe:2.3:a:s9y:serendipity:1.2.1
  • S9y » Serendipity » Version: 1.2__beta5
    cpe:2.3:a:s9y:serendipity:1.2__beta5


Products
Pricing
Contact Us

Shodan ® - All rights reserved