1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
|
Candidate: CVE-2010-2957
PublicDate: 2010-09-10
References:
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-2957
Description:
Cross-site scripting (XSS) vulnerability in Serendipity before 1.5.4, when
"Remember me" logins are enabled, allows remote attackers to inject
arbitrary web script or HTML via unspecified vectors.
Ubuntu-Description:
Notes:
Bugs:
Priority: low
Discovered-by:
Assigned-to:
Patches_serendipity:
upstream: http://svn.berlios.de/viewvc/serendipity/trunk/include/functions_config.inc.php?r1=2679&r2=2688
upstream_serendipity: released (1.5.4)
dapper_serendipity: DNE
hardy_serendipity: ignored (reached end-of-life)
jaunty_serendipity: ignored (reached end-of-life)
karmic_serendipity: ignored (reached end-of-life)
lucid_serendipity: ignored (reached end-of-life)
maverick_serendipity: ignored (reached end-of-life)
natty_serendipity: ignored (reached end-of-life)
oneiric_serendipity: ignored (reached end-of-life)
precise_serendipity: not-affected (1.5.3-2)
quantal_serendipity: not-affected (1.5.3-2)
raring_serendipity: not-affected (1.5.3-2)
saucy_serendipity: DNE
devel_serendipity: DNE
|