Description
Cross-Site Scripting (XSS) in Xinha, as included in the Serendipity package before 1.5.5, allows remote attackers to execute arbitrary code in the image manager.
Remediation
References
Related Vulnerabilities
Claroline Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2008-3262)
Oracle JRE CVE-2018-2814 Vulnerability (CVE-2018-2814)
WordPress 4.5.x Prototype Pollution (4.5 - 4.5.25)
WordPress Plugin Custom Banners Cross-Site Request Forgery (3.2.2)
Django Incorrect Default Permissions Vulnerability (CVE-2019-19118)