6.8

CVE-2005-1448

Cross-site scripting (XSS) vulnerability in the BBCode plugin for Serendipity before 0.8 allows remote attackers to inject arbitrary web script or HTML via unknown vectors.

Data is provided by the National Vulnerability Database (NVD)
S9ySerendipity Version0.7
S9ySerendipity Version0.7.1
S9ySerendipity Version0.7_beta1
S9ySerendipity Version0.7_beta2
S9ySerendipity Version0.7_beta3
S9ySerendipity Version0.7_beta4
S9ySerendipity Version0.7_rc1
S9ySerendipity Version0.8_beta5
S9ySerendipity Version0.8_beta6
Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.
EPSS Metriken
Type Source Score Percentile
EPSS FIRST.org 1.01% 0.75
CVSS Metriken
Source Base Score Exploit Score Impact Score Vector string
nvd@nist.gov 6.8 8.6 6.4
AV:N/AC:M/Au:N/C:P/I:P/A:P