High severity8.8OSV Advisory· Published Jan 28, 2017· Updated Jun 17, 2026
CVE-2017-5609
CVE-2017-5609
Description
SQL injection vulnerability in include/functions_entries.inc.php in Serendipity 2.0.5 allows remote authenticated users to execute arbitrary SQL commands via the cat parameter.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2- Range: 2.0.0, 2.0.1, 2.0.2, …
- Range: <=2.0.5
Patches
Vulnerability mechanics
References
3- github.com/s9y/Serendipity/commit/c62d667287f2d76c81e03a740a581eb3c51249b6nvdIssue TrackingPatchThird Party Advisory
- www.securityfocus.com/bid/95850nvdThird Party AdvisoryVDB Entry
- github.com/s9y/Serendipity/releases/tag/2.1-rc1nvdRelease NotesThird Party Advisory
News mentions
0No linked articles in our index yet.