Description
SQL injection vulnerability in comments.php in Piwigo before 2.0.3 allows remote attackers to execute arbitrary SQL commands via the items_number parameter.
Remediation
References
Related Vulnerabilities
WordPress Plugin Blaze Slideshow 'upload.php' Arbitrary File Upload (2.4)
WordPress Plugin Theme Blvd Shortcodes Multiple Security Bypass Vulnerabilities (1.5.2)
WordPress Plugin WP-PostRatings SQL Injection (1.83.1)
WordPress Plugin Injectbody Spam Injection (All)
WordPress Plugin WP Plugin Info Card Unspecified Vulnerability (2.3.6)