Description

SQL Injection vulnerability in cat_move.php in piwigo v2.9.5, via the selection parameter to move_categories.

Remediation

References

CVE-2020-19213

Related Vulnerabilities

MySQL CVE-2021-35638 Vulnerability (CVE-2021-35638)

Oracle JRE CVE-2018-2797 Vulnerability (CVE-2018-2797)

WordPress Plugin 3DPrint Lite Arbitrary File Upload (1.9.1.4)

WordPress Plugin GeoDirectory Location Manager Multiple SQL Injection Vulnerabilities (2.1.0.9)

Apache HTTP Server Resource Management Errors Vulnerability (CVE-2007-6422)

Severity

Critical

Classification

CVE-2020-19213 CWE-138 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Tags

Missing Update Known Vulnerabilities