📦 Serendipity

Name: Serendipity
Author: S9y

by S9y

🔍 What is Serendipity?

Description coming soon...

🛡️ Security Overview

Click on a severity to filter vulnerabilities

⚠️ Known Vulnerabilities

CVE-2020-10964

CRITICAL CVSS 9.8 Mar 25, 2020

This vulnerability in Serendipity blog software allows remote attackers to execute arbitrary PHP code on Windows systems. Attackers can rename uploaded files to have a .php extension by exploiting fil...

CVE-2023-53933

HIGH CVSS 8.8 Dec 17, 2025

CVE-2023-53933 is a remote code execution vulnerability in Serendipity 2.4.0 that allows authenticated attackers to upload malicious PHP files with .phar extensions via the media upload endpoint. This...

CVE-2024-58282

HIGH CVSS 7.2 Dec 10, 2025

Serendipity 2.5.0 contains a remote code execution vulnerability where authenticated administrators can upload malicious PHP files through the media upload functionality. This allows attackers to exec...

CVE-2023-53932

MEDIUM CVSS 5.4 Dec 17, 2025

Serendipity 2.4.0 contains a stored cross-site scripting vulnerability that allows authenticated users to inject malicious JavaScript into blog entries. When other users view the compromised blog post...