Description

Piwigo 11.5.0 is affected by a SQL injection vulnerability via admin.php and the id parameter.

Remediation

References

CVE-2021-40317

Related Vulnerabilities

WordPress Plugin Unlimited Elements For Elementor (Free Widgets, Addons, Templates) Remote Code Execution (1.5.89)

WordPress Plugin YITH Maintenance Mode Cross-Site Scripting (1.1.4)

Moodle Permissions, Privileges, and Access Controls Vulnerability (CVE-2011-4308)

Oracle JRE CVE-2013-2436 Vulnerability (CVE-2013-2436)

WordPress Plugin Media Library Categories Multiple Cross-Site Scripting Vulnerabilities (1.1.1)

Severity

High

Classification

CVE-2021-40317 CWE-138 CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Tags

Missing Update Known Vulnerabilities