Arbitrary Code Execution via Cross-Site Scripting (XSS) in Xinha Image Manager
CVE-2011-1134 · CRITICAL Severity
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Cross-Site Scripting (XSS) in Xinha, as included in the Serendipity package before 1.5.5, allows remote attackers to execute arbitrary code in the image manager.
Learn more about our Web Application Penetration Testing UK.