Description
SQL injection vulnerability in include/functions_entries.inc.php in Serendipity 2.0.5 allows remote authenticated users to execute arbitrary SQL commands via the cat parameter.
Remediation
References
Related Vulnerabilities
WordPress Plugin Fast Velocity Minify Information Disclosure (2.7.6)
silverstripeCMS Improper Restriction of XML External Entity Reference Vulnerability (CVE-2020-25817)
WordPress Plugin WordPress Download Manager Cross-Site Scripting (3.2.21)