Description Piwigo 13.6.0 is vulnerable to Cross Site Request Forgery (CSRF) in the "add tags" function. Remediation References CVE-2023-33359 Related Vulnerabilities Atlassian Jira Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2017-18097) WordPress Plugin Broken Link Checker PHAR Deserialization (1.11.16) MySQL CVE-2021-35608 Vulnerability (CVE-2021-35608) PHP Uncontrolled Resource Consumption Vulnerability (CVE-2017-9119) WordPress 4.5.x Multiple Vulnerabilities (4.5 - 4.5.29) Severity Medium Classification CVE-2023-33359 CWE-352 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N Tags Missing Update Known Vulnerabilities