Vulnerabilities > S9Y > Serendipity > 2.0.3
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2016-12-01 | CVE-2016-9752 | Server-Side Request Forgery (SSRF) vulnerability in S9Y Serendipity In Serendipity before 2.0.5, an attacker can bypass SSRF protection by using a malformed IP address (e.g., http://127.1) or a 30x (aka Redirection) HTTP status code. | 5.0 |