Vulnerabilities > CVE-2005-1451 - Remote Security vulnerability in Serendipity

Attack vector

NETWORK

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

PARTIAL

Integrity impact

PARTIAL

Availability impact

PARTIAL

network

low complexity

NVD

Published: 2005-05-03

Updated: 2008-09-05

Summary

The media manager in Serendipity before 0.8 allows remote attackers to upload and execute arbitrary (1) .php or (2) .shtml files.

Part	Description	Count
Application	S9Y S9Y Serendipity 0.3 S9Y Serendipity 0.4 S9Y Serendipity 0.5_Pl1 S9Y Serendipity 0.6_Pl3 S9Y Serendipity 0.7 S9Y Serendipity 0.7.1 S9Y Serendipity 0.7_Beta1 S9Y Serendipity 0.7_Beta2 S9Y Serendipity 0.7_Beta3 S9Y Serendipity 0.7_Beta4 S9Y Serendipity 0.7_Rc1 S9Y Serendipity 0.8_Beta_5 S9Y Serendipity 0.8_Beta_6	13