Vulnerabilities > Piwigo > Piwigo > 2.7.0
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2014-06-28 | CVE-2014-4649 | SQL Injection vulnerability in Piwigo SQL injection vulnerability in the photo-edit subsystem in Piwigo 2.6.x and 2.7.x before 2.7.0beta2 allows remote authenticated administrators to execute arbitrary SQL commands via the associate[] field. | 6.5 |