Security Advisory

CVE-2024-58282

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2025-12-10 21:14:19

Last updated 2026-04-07 14:08:35

Assigner VulnCheck

State PUBLISHED

Description

Serendipity 2.5.0 contains a remote code execution vulnerability that allows authenticated administrators to upload malicious PHP files through the media upload functionality. Attackers can exploit the file upload mechanism by creating a PHP shell with a command execution form that enables arbitrary system command execution on the web server.

← Browse all CVEs View on cve.org ↗