Security: Piwigo/Piwigo
Security Advisories
View known security vulnerabilities and report new vulnerabilities privately to maintainers.
-
CSRF + XSS to RCEGHSA-8g2g-6f2c-6h7j published
Mar 1, 2024 by plegallCritical -
CSRF + Stored XSS To Perform Remote Code ExecutionGHSA-p362-cfpj-q55f published
Feb 12, 2024 by plegallCritical -
Reflected XSS in /admin.php?page=plugins&tab=new&installstatus=ok&plugin_id=[here]GHSA-qg85-957m-7vgg published
Oct 6, 2023 by plegallCritical -
SQL Injection in "User-Agent"GHSA-934w-qj9p-3qcx published
Jul 7, 2023 by plegallHigh -
Cross-Site Scripting in TagGHSA-7379-w44f-mfw4 published
Mar 1, 2024 by plegallModerate