CVE-2011-4090

NameCVE-2011-4090
DescriptionSerendipity before 1.6 has an XSS issue in the karma plugin which may allow privilege escalation.
SourceCVE (at NVD; CERT, LWN, oss-sec, fulldisc, bugtraq, EDB, Metasploit, Red Hat, Ubuntu, Gentoo, SUSE bugzilla/CVE, Mageia, GitHub code/issues, web search, more)
NVD severitymedium
Debian Bugs650937

The information below is based on the following data on fixed versions.

PackageTypeReleaseFixed VersionUrgencyOriginDebian Bugs
serendipitysource(unstable)(unfixed)650937

Notes

[squeeze] - serendipity <no-dsa> (Minor issue)
http://seclists.org/oss-sec/2011/q4/192

Search for package or bug name: Reporting problems