Serendipity Unrestricted Upload of File with Dangerous Type Vulnerability - CVE-2011-1134 - Vulnerability Database

Serendipity Unrestricted Upload of File with Dangerous Type Vulnerability - CVE-2011-1134

Critical

Reference: CVE-2011-1134

NVD Link: https://nvd.nist.gov/vuln/detail/CVE-2011-1134

Title: Serendipity Unrestricted Upload of File with Dangerous Type Vulnerability

Overview:

Cross-Site Scripting (XSS) in Xinha as included in the Serendipity package before 1.5.5 allows remote attackers to execute arbitrary code in the image manager.