Description
SQL Injection vulnerability in admin/batch_manager.php in piwigo v2.9.5, via the filter_category parameter to admin.php?page=batch_manager.
Remediation
References
Related Vulnerabilities
WordPress Plugin Lingotek Translation Multiple Cross-Site Scripting Vulnerabilities (1.1.8)
WordPress Plugin Icons with Links Widget Cross-Site Scripting (1.2)
PHP Improper Input Validation Vulnerability (CVE-2012-2336)
WordPress Plugin CM Pop-Up banners for WordPress Cross-Site Scripting (1.4.10)
WordPress Plugin Comments Like Dislike Security Bypass (1.1.3)