Description There is CSRF in Serendipity 2.0.5, allowing attackers to install any themes via a GET request. Remediation References CVE-2017-8101 Related Vulnerabilities Jboss EAP Insertion of Sensitive Information into Log File Vulnerability (CVE-2019-10212) WordPress Plugin Stream Cross-Site Scripting (3.0.5) MySQL CVE-2014-0420 Vulnerability (CVE-2014-0420) WordPress Plugin Multiple Page Generator-MPG Cross-Site Request Forgery (3.3.9) SharePoint CVE-2019-0562 Vulnerability (CVE-2019-0562) Severity High Classification CVE-2017-8101 CWE-352 CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H Tags Missing Update Known Vulnerabilities