Web Application Vulnerabilities Runtime SCA Findings
Looking for the vulnerability index of Invicti's legacy products?
Invicti Enterprise Acunetix Standard & Premium

CMS

Serendipity

Serendipity is a PHP-powered weblog engine that gives the user an easy way to maintain a blog.

Official Site:

https://docs.s9y.org/

Severity Summary:

Critical: 6 High: 16 Medium: 28 Low: 2
Reference
Title
Severity
CVE-2005-1713
Serendipity Other Vulnerability
Medium
CVE-2005-3129
Serendipity Other Vulnerability
Medium
CVE-2011-1133
Serendipity Improper Neutralization of Input During Web Page Generation (Cross-site Scripting) Vulnerability
Medium
CVE-2007-6205
Serendipity Improper Neutralization of Input During Web Page Generation (Cross-site Scripting) Vulnerability
Medium
CVE-2015-8603
Serendipity Improper Neutralization of Input During Web Page Generation (Cross-site Scripting) Vulnerability
Medium
CVE-2008-0124
Serendipity Improper Neutralization of Input During Web Page Generation (Cross-site Scripting) Vulnerability
Medium
CVE-2015-6969
Serendipity Improper Neutralization of Input During Web Page Generation (Cross-site Scripting) Vulnerability
Medium
CVE-2015-6968
Serendipity Other Vulnerability
Medium
CVE-2015-6943
Serendipity Improper Neutralization of Special Elements used in an SQL Command (SQL Injection) Vulnerability
Medium
CVE-2013-5670
Serendipity Improper Neutralization of Input During Web Page Generation (Cross-site Scripting) Vulnerability
Medium
CVE-2013-5314
Serendipity Improper Neutralization of Input During Web Page Generation (Cross-site Scripting) Vulnerability
Medium
CVE-2011-1135
Serendipity Improper Neutralization of Input During Web Page Generation (Cross-site Scripting) Vulnerability
Medium
CVE-2012-2331
Serendipity Improper Neutralization of Input During Web Page Generation (Cross-site Scripting) Vulnerability
Medium
CVE-2019-11870
Serendipity Improper Neutralization of Input During Web Page Generation (Cross-site Scripting) Vulnerability
Medium
CVE-2011-3800
Serendipity Exposure of Sensitive Information to an Unauthorized Actor Vulnerability
Medium
CVE-2011-4090
Serendipity Improper Neutralization of Input During Web Page Generation (Cross-site Scripting) Vulnerability
Medium
CVE-2009-4412
Serendipity Other Vulnerability
Medium
CVE-2008-1385
Serendipity Improper Neutralization of Input During Web Page Generation (Cross-site Scripting) Vulnerability
Medium
CVE-2008-1386
Serendipity Improper Neutralization of Input During Web Page Generation (Cross-site Scripting) Vulnerability
Medium
CVE-2026-39963
Serendipity Reliance on Cookies without Validation and Integrity Checking Vulnerability
Medium
CVE-2010-2957
Serendipity Improper Neutralization of Input During Web Page Generation (Cross-site Scripting) Vulnerability
Low
CVE-2015-2289
Serendipity Improper Neutralization of Input During Web Page Generation (Cross-site Scripting) Vulnerability
Low