CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

S9y: >> Serendipity >> 2.0.4 Security Vulnerabilities

CVE-2016-9752

In Serendipity before 2.0.5, an attacker can bypass SSRF protection by using a malformed IP address (e.g., http://127.1) or a 30x (aka Redirection) HTTP status code.

CVSS Score

8.6

EPSS Score

0.002

Published

2016-12-01

Page 2

Vulnerabilities

Vulnerable Software

S9y: >> Serendipity >> 2.0.4 Security Vulnerabilities

Products

Pricing

Contact Us