Download
| Alert*
DSA-1528 serendipity -- insufficient input sanitising
Peter Huumlwe and Hanno Bouml ck discovered that Serendipity, a weblog manager, did not properly sanitise input to several scripts which allowed cross site scripting. The old stable distribution (sarge) does not contain a serendipity package.
|