Vulnerabilities > Piwigo > Piwigo > 13.6.0
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2023-10-09 | CVE-2023-44393 | Improper Neutralization of Script-Related HTML Tags in a Web Page (Basic XSS) vulnerability in Piwigo Piwigo is an open source photo gallery application. | 6.1 |
2023-07-07 | CVE-2023-37270 | SQL Injection vulnerability in Piwigo Piwigo is open source photo gallery software. | 8.8 |
2023-06-15 | CVE-2023-34626 | SQL Injection vulnerability in Piwigo Piwigo 13.7.0 is vulnerable to SQL Injection via the "Users" function. | 4.3 |
2023-05-23 | CVE-2023-33359 | Cross-Site Request Forgery (CSRF) vulnerability in Piwigo 13.6.0 Piwigo 13.6.0 is vulnerable to Cross Site Request Forgery (CSRF) in the "add tags" function. | 4.3 |
2023-05-23 | CVE-2023-33361 | SQL Injection vulnerability in Piwigo 13.6.0 Piwigo 13.6.0 is vulnerable to SQL Injection via /admin/permalinks.php. | 9.8 |
2023-05-23 | CVE-2023-33362 | SQL Injection vulnerability in Piwigo 13.6.0 Piwigo 13.6.0 is vulnerable to SQL Injection via in the "profile" function. | 9.8 |