Description Serendipity through 2.0.5 allows CSRF for the installation of an event plugin or a sidebar plugin. Remediation References CVE-2017-5476 Related Vulnerabilities Oracle HTTP Server Other Vulnerability (CVE-1999-1068) WordPress Plugin Docket Cache-Object Cache Accelerator Cross-Site Scripting (21.08.01) WordPress Plugin Quiz and Survey Master (QSM)-Easy Quiz and Survey Maker Multiple Vulnerabilities (8.0.4) WordPress Plugin BuddyStream Multiple Cross-Site Scripting Vulnerabilities (2.6.2) Magento Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2019-7865) Severity High Classification CVE-2017-5476 CWE-352 CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H Tags Missing Update Known Vulnerabilities