CVE-2017-5609 in Serendipityinfo

Summary

SQL injection vulnerability in include/functions_entries.inc.php in Serendipity 2.0.5 allows remote authenticated users to execute arbitrary SQL commands via the cat parameter.

VulDB is the best source for vulnerability data and more expert information about this specific topic.

Responsible

Reservation

01/28/2017

Disclosure

01/28/2017

Moderation

VulDB entry created

Entries

VDB-96247

CPE

ready

CWE

CWE-89 (Confirmed)

CVSS

7.5

EPSS

0.01013

Activities

Very Low

Sources

MITRE	https://www.cve.org/CVERecord?id=CVE-2017-5609
NVD	https://nvd.nist.gov/vuln/detail/CVE-2017-5609
CVE Details	https://www.cvedetails.com/cve/CVE-2017-5609/

◂ Previous Overview Next ▸

Want to know what is going to be exploited?

We predict KEV entries!