Description
There is CSRF in Serendipity 2.0.5, allowing attackers to install any themes via a GET request.
Remediation
References
Related Vulnerabilities
WordPress Plugin WordPress Comments Import & Export Cross-Site Request Forgery (2.1.10)
WordPress Plugin eShop Multiple Vulnerabilities (6.3.13)
WordPress Plugin Captcha Backdoor (4.4.4)
WordPress Plugin WP Google Maps Cross-Site Scripting (6.3.14)
WordPress Plugin Levo Slideshow Multiple Vulnerabilities (2.3)