Description
Cross-Site Scripting (XSS) in Xinha, as included in the Serendipity package before 1.5.5, allows remote attackers to execute arbitrary code in the image manager.
Remediation
References
Related Vulnerabilities
WordPress Plugin Import all XML, CSV & TXT into WordPress Information Disclosure (3.6.74)
PHP Permissions, Privileges, and Access Controls Vulnerability (CVE-2009-3557)
MySQL CVE-2017-10283 Vulnerability (CVE-2017-10283)
WordPress Plugin PhonePe Payment Solutions Server-Side Request Forgery (1.0.15)