CVE-2017-8101

CVE-2017-8101

EPSS 0.6%

There is CSRF in Serendipity 2.0.5, allowing attackers to install any themes via a GET request.

Affected products

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →

References

http://seclists.org/fulldisclosure/2017/Apr/52 https://github.com/s9y/Serendipity/issues/452