cbcvebase.
CVE-2006-2495
published 2006-05-20

CVE-2006-2495: Cross-site request forgery (CSRF) vulnerability in the Entry Manager in Serendipity before 1.0-beta3 allows remote attackers to perform unauthorized actions as…

PriorityP427high7.5CVSS 2.0
AVNACLAuNCPIPAP
EPSS
1.54%
71.7th percentile
Cross-site request forgery (CSRF) vulnerability in the Entry Manager in Serendipity before 1.0-beta3 allows remote attackers to perform unauthorized actions as a logged-in user via a link or IMG tag.

Affected

18 ranges
VendorProductVersion rangeFixed in
s9yserendipity
s9yserendipity
s9yserendipity
s9yserendipity
s9yserendipity
s9yserendipity
s9yserendipity
s9yserendipity
s9yserendipity
s9yserendipity
s9yserendipity
s9yserendipity
s9yserendipity
s9yserendipity
s9yserendipity
s9yserendipity
s9yserendipity
s9yserendipity
Stop checking back — get the weekly exploitation signal.

Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.