Description
Piwigo v12.2.0 was discovered to contain an information leak via the action parameter in /admin/maintenance_actions.php.
Remediation
References
Related Vulnerabilities
MySQL CVE-2021-2226 Vulnerability (CVE-2021-2226)
XWiki URL Redirection to Untrusted Site ('Open Redirect') Vulnerability (CVE-2023-29204)
Oracle Database Server CVE-2008-0346 Vulnerability (CVE-2008-0346)
WordPress Plugin Ultimate FAQ Cross-Site Scripting (1.8.29)
WordPress Plugin Smart Forms-when you need more than just a contact form Security Bypass (2.6.84)