S9Y Serendipity HTML Injection and Cross-Site Scripting Vulnerabilities

S9Y Serendipity HTML Injection and Cross-Site Scripting Vulnerabilities

References:

Serendipity 1.3.1 released (S9Y)
Serendipity Homepage (S9Y)
Correcting CVEs (was Re: [Full-disclosure] Cross site scripting issues in s9y (C (Hanno Böck )
ross site scripting issues in s9y (CVE-2008-1386, CVE-2008-1387) ()
Cross Site Scripting (XSS) in serendipity 1.3 installer, CVE-2008-1386 (Hanno Boeck)
Cross Site Scripting (XSS) in serendipity 1.3 referrer plugin, CVE-2008-1385 (Hanno Boeck)

Privacy Statement
Copyright 2010, SecurityFocus