Description
Piwigo 13.6.0 is vulnerable to SQL Injection via in the "profile" function.
Remediation
References
Related Vulnerabilities
IBM RTC Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2017-1570)
WordPress Plugin Recent Backups Arbitrary File Download (0.7)
WordPress Plugin My Calendar Multiple Cross-Site Scripting Vulnerabilities (1.10.1)
Ruby Resource Management Errors Vulnerability (CVE-2008-2664)