Reports in hanno program: S.No Title Bounty 1 SQL injection in Serendipity (serendipity_fetchComments) $0.0 2 Reflected Cross-Site Scripting in Serendipity (serendipity.SetCookie) $0.0 3 Open redirect in Serendipity (exit.php) $0.0 4 SSRF in rompager-check $0.0 5 blind sql injection $0.0 6 Reflected xss in Serendipity's /index.php $0.0 7 Open redirect on https://blog.fuzzing-project.org $0.0 8 Open redirect on the https://tt.hboeck.de $0.0 9 Bypassing the fix of #503922 $0.0 10 Text injection at https://media.hboeck.de $0.0 11 [bugs.fuzzing-project.org] HTML Injection via 'custom_field_7[]' parameter in '/view_all_set.php' $0.0