Description Piwigo 13.6.0 is vulnerable to SQL Injection via /admin/permalinks.php. Remediation References CVE-2023-33361 Related Vulnerabilities WordPress Plugin Brizy-Page Builder Security Bypass (2.4.44) PostgreSQL Other Vulnerability (CVE-2012-1618) WordPress Plugin Ultimate WP Query Search Filter Cross-Site Scripting (1.0.10) WordPress Plugin W3 Total Cache PHP Code Injection (0.9.2.8) Moodle Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2021-27131) Severity Critical Classification CVE-2023-33361 CWE-138 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H Tags Missing Update Known Vulnerabilities