Serendipity · Serendipity · CVE-2011-1134
**Name of the Vulnerable Software and Affected Versions**
Serendipity versions prior to 1.5.5
**Description**
The issue allows remote attackers to execute arbitrary code in the image manager due to Cross-Site Scripting (XSS) in Xinha, which is included in the Serendipity package.
**Recommendations**
For versions prior to 1.5.5, update to version 1.5.5 or later to resolve the issue.