CSRF Vulnerability in Serendipity 2.0.5 Allows Unauthorized Plugin Installation

CSRF Vulnerability in Serendipity 2.0.5 Allows Unauthorized Plugin Installation

CVE-2017-5476 · MEDIUM Severity

AV:N/AC:M/AU:N/C:P/I:P/A:P

Serendipity through 2.0.5 allows CSRF for the installation of an event plugin or a sidebar plugin.

Learn more about our Web Application Penetration Testing UK.