Lucene search
MitreCVELIST:CVE-2022-24620HistoryFeb 23, 2022 - 2:26 p.m.
CVE-2022-24620
2022-02-2314:26:24
mitre
raw.githubusercontent.com
2
0.001 Low
EPSS
Percentile
24.1%
Piwigo version 12.2.0 is vulnerable to stored cross-site scripting (XSS), which can lead to privilege escalation. In this way, admin can steal webmasterβs cookies to get the webmasterβs access.
Related
cve
cve
CVE-2022-24620
2022-02-24 15:15:00
ibm
ibm
prion
prion
Cross site scripting
2022-02-24 15:15:00
cnvd
cnvd
Piwigo Cross-Site Scripting Vulnerability (CNVD-2022-71118)
2022-02-28 00:00:00
osv
osv
CVE-2022-24620
2022-02-24 15:15:29