mirror of
https://github.com/0xMarcio/cve.git
synced 2025-05-28 01:04:30 +00:00
809 B
809 B
CVE-2004-2157
Description
Cross-site scripting (XSS) vulnerability in Comment.php in Serendipity 0.7 beta1, and possibly other versions before 0.7-beta3, allows remote attackers to inject arbitrary HTML and PHP code via the (1) email or (2) username field.
POC
Reference
- http://lists.grok.org.uk/pipermail/full-disclosure/2004-September/026955.html
- http://lists.grok.org.uk/pipermail/full-disclosure/2004-September/026955.html
Github
No PoCs found on GitHub currently.