Arbitrary Code Execution via Cross-Site Scripting (XSS) in Xinha Image Manager

Arbitrary Code Execution via Cross-Site Scripting (XSS) in Xinha Image Manager

CVE-2011-1134 · CRITICAL Severity

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Cross-Site Scripting (XSS) in Xinha, as included in the Serendipity package before 1.5.5, allows remote attackers to execute arbitrary code in the image manager.

Learn more about our Web Application Penetration Testing UK.