CVE-2023-53932

Name of the Vulnerable Software and Affected Versions Serendipity version 2.4.0

Description An authenticated user can inject malicious scripts through blog entry creation. An attacker can create blog entries with JavaScript payloads that execute when other users view the compromised post. This is a stored cross-site scripting issue.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.