Description

SQL injection vulnerability in exit.php for Serendipity 0.8 and earlier allows remote attackers to execute arbitrary SQL commands via the (1) url_id or (2) entry_id parameters.

Remediation

References

CVE-2005-1134

Related Vulnerabilities

WordPress Plugin Slick Popup:Contact Form 7 Popup Privilege Escalation (1.7.1)

phpBB Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2020-5501)

Apache Tomcat Other Vulnerability (CVE-2001-1563)

WordPress Plugin Post Logo Cross-Site Scripting (1.1b)

WordPress Plugin WP Web Scraper Unspecified Vulnerability (2.4)

Severity

High

Classification

CVE-2005-1134

Tags

Missing Update Known Vulnerabilities