There is CSRF in Serendipity 2.0.5, allowing malicious users to install any themes via a GET request.
s9y serendipity 2.0.5