Description Serendipity 2.0.3 is vulnerable to a SQL injection in the blog component resulting in information disclosure Remediation References CVE-2017-1000129 Related Vulnerabilities phpMyFAQ Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2023-0794) Elgg Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2011-3733) WebLogic CVE-2022-21347 Vulnerability (CVE-2022-21347) MediaWiki Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2015-2941) CubeCart Improper Authentication Vulnerability (CVE-2014-2341) Severity High Classification CVE-2017-1000129 CWE-138 CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N Tags Missing Update Known Vulnerabilities