CVE-2023-53933 — Serendipity 2.4.0 contains a remote code execution vulnerability that allows authenticated attackers to upload malicious PHP files with .phar extension. Attackers can upload files with system command — CVE Database · The Intelligence Room