Description
Cross-Site Scripting (XSS) in Xinha, as included in the Serendipity package before 1.5.5, allows remote attackers to execute arbitrary code in the image manager.
Remediation
References
Related Vulnerabilities
Internet Information Services Other Vulnerability (CVE-2000-0778)
Squid NULL Pointer Dereference Vulnerability (CVE-2018-1000027)
WordPress Plugin WP Post Rating Security Bypass (2.4.6)
WordPress Plugin Content Timeline Multiple SQL Injection Vulnerabilities (4.4.2)
WordPress Authentication Bypass Using an Alternate Path or Channel Vulnerability (CVE-2020-4050)