Description
Cross-Site Scripting (XSS) in Xinha, as included in the Serendipity package before 1.5.5, allows remote attackers to execute arbitrary code in plugins/ExtendedFileManager/manager.php and plugins/ImageManager/manager.php.
Remediation
References
Related Vulnerabilities
MySQL CVE-2015-0508 Vulnerability (CVE-2015-0508)
MediaWiki CVE-2023-37301 Vulnerability (CVE-2023-37301)
MySQL CVE-2022-21317 Vulnerability (CVE-2022-21317)
Apache Tomcat Improper Input Validation Vulnerability (CVE-2016-6816)
WordPress Plugin Widgets for WooCommerce Products on Elementor Security Bypass (1.0.5)