Vulnerabilities > CVE-2014-8943 - Server-Side Request Forgery (SSRF) vulnerability in Piwigo Lexiglot 20141110

047910
CVSS 6.5 - MEDIUM
Attack vector
UNKNOWN
Attack complexity
UNKNOWN
Privileges required
UNKNOWN
Confidentiality impact
UNKNOWN
Integrity impact
UNKNOWN
Availability impact
UNKNOWN

Summary

Lexiglot through 2014-11-20 allows SSRF via the admin.php?page=projects svn_url parameter.

Vulnerable Configurations

Part Description Count
Application
Piwigo
1

Common Weakness Enumeration (CWE)