Vulnerability CVE-2010-1916

Vulnerability CVE-2010-1916

Published: 2010-05-12 Modified: 2012-02-13

Description:

Type:

(Permissions, Privileges, and Access Controls)

CVSS Base Score	Impact Subscore	Exploitability Subscore
7.5/10	6.4/10	10/10

Affected software
Xinha -> Wysiwyg editor
S9Y -> Serendipity

https://bugzilla.redhat.com/show_bug.cgi?id=591701

http://www.vupen.com/english/advisories/2010/1401

http://www.securityfocus.com/bid/40033

http://www.php-security.org/2010/05/10/mops-2010-020-xinha-wysiwyg-plugin-configuration-injection-vulnerability/index.html

http://www.php-security.org/2010/05/10/mops-2010-019-serendipity-wysiwyg-editor-plugin-configuration-injection-vulnerability/index.html

http://trac.xinha.org/ticket/1518

http://secunia.com/advisories/40124

http://secunia.com/advisories/39782

http://lists.fedoraproject.org/pipermail/package-announce/2010-June/042577.html