Description
Piwigo 11.4.0 allows admin/user_list_backend.php order[0][dir] SQL Injection.
Remediation
References
Related Vulnerabilities
Drupal Core 8.x Multiple Vulnerabilities (8.0.0 - 8.2.6)
WordPress Plugin ExS Widgets Local File Inclusion (0.3.1)
Atlassian Jira CVE-2021-39121 Vulnerability (CVE-2021-39121)
WordPress Plugin Absolute Privacy 'abpr_authenticateUser()' Security Bypass (2.0.5)
Rukovoditel Cross-site Scripting (XSS) Vulnerability (CVE-2019-7541)