Security Advisory

CVE-2023-53932

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2025-12-17 22:44:59
Last updated 2026-04-07 14:07:52
Assigner VulnCheck
State PUBLISHED

Description

Serendipity 2.4.0 contains a stored cross-site scripting vulnerability that allows authenticated users to inject malicious scripts through blog entry creation. Attackers can craft entries with JavaScript payloads that will execute when other users view the compromised blog post.