Description Serendipity 2.0.3 is vulnerable to a SQL injection in the blog component resulting in information disclosure Remediation References CVE-2017-1000129 Related Vulnerabilities Sqlite Use After Free Vulnerability (CVE-2021-20227) EspoCRM Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2018-17302) WordPress Plugin Subscribe Form Remote Command Execution (1.1) MySQL Other Vulnerability (CVE-2010-1849) IBMHttpServer Other Vulnerability (CVE-2004-0492) Severity High Classification CVE-2017-1000129 CWE-138 CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N Tags Missing Update Known Vulnerabilities