1
Candidate: CVE-2013-5670
4
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-5670
6
Cross-site scripting (XSS) vulnerability in spell-check-savedicts.php in
7
the htmlarea SpellChecker module, as used in Serendipity before 1.7.3 and
8
possibly other products, allows remote attackers to inject arbitrary web
9
script or HTML via the to_r_list parameter.
12
mdeslaur> doesn't affect 1.5.x
19
upstream_serendipity: needs-triage
20
lucid_serendipity: ignored (reached end-of-life)
21
precise_serendipity: not-affected
22
quantal_serendipity: not-affected
23
raring_serendipity: not-affected
24
devel_serendipity: DNE