Description Serendipity through 2.0.5 allows CSRF for the installation of an event plugin or a sidebar plugin. Remediation References CVE-2017-5476 Related Vulnerabilities MySQL CVE-2023-22038 Vulnerability (CVE-2023-22038) OpenSSL NULL Pointer Dereference Vulnerability (CVE-2023-0216) Moodle Improper Authentication Vulnerability (CVE-2014-3552) Drupal Core 6.x Session Hijacking (6.0 - 6.33) Django Resource Management Errors Vulnerability (CVE-2014-0474) Severity High Classification CVE-2017-5476 CWE-352 CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H Tags Missing Update Known Vulnerabilities