Description
Cross-site scripting (XSS) vulnerability in the Top Referrers (aka referrer) plugin in Serendipity (S9Y) before 1.3.1 allows remote attackers to inject arbitrary web script or HTML via the Referer HTTP header.
Remediation
References
Related Vulnerabilities
OpenSSL Other Vulnerability (CVE-2014-3569)
WordPress Plugin MapifyLite (by MapifyPro) Cross-Site Scripting (3.3)
WordPress Plugin AdRotate-Ad manager & AdSense Ads SQL Injection (5.2)
Dolibarr Improper Control of Generation of Code ('Code Injection') Vulnerability (CVE-2022-0819)
WordPress Plugin File Manager Unspecified Vulnerability (3.0)