ID de Prueba:	1.3.6.1.4.1.25623.1.0.52736
Categoría:	CGI abuses
Título:	S9Y Serendipity Multiple Remote Vulnerabilities
Resumen:	NOSUMMARY
Descripción:	Description: The remote version of Serendipity, according to its version number, is vulnerable to multiple cross site scripting and SQL injection attacks as a result of improperly sanitized user input. Versions prior to 0.7 Beta3 are known to be vulnerable. Solution : Upgrade to a later version. Risk factor : High CVSS Score: 7.5
Referencia Cruzada:	BugTraq ID: 11269 Common Vulnerability Exposure (CVE) ID: CVE-2004-2158 http://www.securityfocus.com/bid/11269 http://lists.grok.org.uk/pipermail/full-disclosure/2004-September/026955.html http://www.osvdb.org/10370 http://www.osvdb.org/10371 http://securitytracker.com/id?1011448 http://secunia.com/advisories/12673/ XForce ISS Database: serendipity-sql-injection(17533) https://exchange.xforce.ibmcloud.com/vulnerabilities/17533 Common Vulnerability Exposure (CVE) ID: CVE-2004-2157 XForce ISS Database: serendipity-commentphp-xss(17536) https://exchange.xforce.ibmcloud.com/vulnerabilities/17536
Copyright	Copyright (c) 2005 E-Soft Inc. http://www.securityspace.com

Esta es sólo una de 146377 pruebas de vulnerabilidad en nuestra serie de pruebas. Encuentre más sobre cómo ejecutar una auditoría de seguridad completa. Para ejecutar una prueba gratuita de esta vulnerabilidad contra su sistema, regístrese ahora.