CVE-2007-6390

Cross-site request forgery (CSRF) vulnerability in the mycalendar plugin before 0.13 for Serendipity allows remote attackers to perform actions as blog administrators, which can be leveraged to conduct cross-site scripting (XSS) attacks on the blog page.
Configurations

Configuration 1

cpe:2.3:a:serendipity:serendipity:*:*:*:*:*:*:*:*

Information

Published : 2007-12-17 06:46

Updated : 2008-09-05 09:33


NVD link : CVE-2007-6390

Mitre link : CVE-2007-6390

Products Affected
No products.
CWE