Security Advisory

CVE-2013-5670

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2013-11-05 18:00:00

Last updated 2024-09-17 01:47:04

Assigner mitre

State PUBLISHED

Description

Cross-site scripting (XSS) vulnerability in spell-check-savedicts.php in the htmlarea SpellChecker module, as used in Serendipity before 1.7.3 and possibly other products, allows remote attackers to inject arbitrary web script or HTML via the to_r_list parameter.

← Browse all CVEs View on cve.org ↗