Description
SQL injection exists in Piwigo before 11.4.0 via the language parameter to admin.php?page=languages.
Remediation
References
Related Vulnerabilities
Joomla Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2011-2488)
WordPress Plugin Wordpress Forms Multiple Vulnerabilities (0.2.7.1)
TwistedHTTP Request Splitting Vulnerability (CVE-2020-10108)
WordPress Plugin Login Security Solution Multiple Unspecified Vulnerabilities (0.50.0)