Serendipity : Security Vulnerabilities, CVEs, Published In 2007 (XSS)
Cross-site request forgery (CSRF) vulnerability in the mycalendar plugin before 0.13 for Serendipity allows remote attackers to perform actions as blog administrators, which can be leveraged to conduct cross-site scripting (XSS) attacks on the blog page.
Max CVSS
4.3
EPSS Score
0.12%
Published
2007-12-17
Updated
2008-09-05
1 vulnerabilities found