Web Application Vulnerabilities Runtime SCA Findings
Looking for the vulnerability index of Invicti's legacy products?
Invicti Enterprise Acunetix Standard & Premium
Serendipity Improper Neutralization of Input During Web Page Generation (Cross-site Scripting) Vulnerability - CVE-2023-53932 - Vulnerability Database
Serendipity

Serendipity Improper Neutralization of Input During Web Page Generation (Cross-site Scripting) Vulnerability - CVE-2023-53932

Medium
Reference: CVE-2023-53932
NVD Link: https://nvd.nist.gov/vuln/detail/CVE-2023-53932
Title: Serendipity Improper Neutralization of Input During Web Page Generation (Cross-site Scripting) Vulnerability
Overview:

Serendipity 2.4.0 contains a stored cross-site scripting vulnerability that allows authenticated users to inject malicious scripts through blog entry creation. Attackers can craft entries with JavaScript payloads that will execute when other users view the compromised blog post.