Description

Piwigo 13.6.0 is vulnerable to Cross Site Request Forgery (CSRF) in the "add tags" function.

Remediation

References

CVE-2023-33359

Related Vulnerabilities

SugarCRM Other Vulnerability (CVE-2005-0266)

Opencart Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2011-3763)

WordPress Plugin Sliding Social Icons Cross-Site Request Forgery (1.61)

GlassFish Improper Restriction of Operations within the Bounds of a Memory Buffer Vulnerability (CVE-2015-7182)

WordPress Plugin Spam protection, AntiSpam, FireWall by CleanTalk Cross-Site Scripting (5.127.3)

Severity

Medium

Classification

CVE-2023-33359 CWE-352 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N

Tags

Missing Update Known Vulnerabilities