Description piwigo 11.5.0 is affected by a remote code execution (RCE) vulnerability in the LocalFiles Editor. Remediation References CVE-2021-40553 Related Vulnerabilities Apache HTTP Server Server-Side Request Forgery (SSRF) Vulnerability (CVE-2021-40438) WordPress Plugin Scribble Maps Cross-Site Scripting (1.2) WordPress Plugin Feed Them Social-for Twitter feed, Youtube and more Cross-Site Scripting (1.6.9) WordPress Plugin Web Invoice-Invoicing and billing for WordPress Multiple SQL Injection Vulnerabilities (2.1.3) XOOPS Other Vulnerability (CVE-2005-2112) Severity High Classification CVE-2021-40553 CWE-138 CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H Tags Missing Update Known Vulnerabilities