Lucene search

piwigo -- CSRF/Path Traversal

🗓️ 06 Feb 2013 00:00:00Reported by FreeBSDType

Piwigo CSRF and Path Traversal Vulnerabilities

Reporter	Title	Published	Views	Family All 27
OpenVAS	Piwigo Cross Site Request Forgery and Path Traversal Vulnerabilities	21 Mar 201300:00	–	openvas
0day.today	Piwigo 2.4.6 - Multiple Vulnerabilities	1 Mar 201300:00	–	zdt
0day.today	Piwigo 2.4.6 Cross Site Request Forgery / Traversal Vulnerabilities	1 Mar 201300:00	–	zdt
0day.today	Piwigo 2.7.2 SQL Injection / Cross Site Scripting Vulnerabilities	20 Dec 201400:00	–	zdt
Tenable Nessus	FreeBSD : piwigo -- CSRF/Path Traversal (edd201a5-8fc3-11e2-b131-000c299b62e1)	20 Mar 201300:00	–	nessus
Tenable Nessus	Piwigo install.php dl Parameter Traversal Arbitrary File Access	2 Apr 201300:00	–	nessus
Exploit DB	Piwigo 2.4.6 - Multiple Vulnerabilities	1 Mar 201300:00	–	exploitdb
Exploit DB	Piwigo 2.7.2 - Multiple Vulnerabilities	19 Dec 201400:00	–	exploitdb
Packet Storm	Piwigo 2.4.6 Cross Site Request Forgery / Traversal	28 Feb 201300:00	–	packetstorm
Packet Storm	Piwigo 2.7.2 Cross Site Scripting / SQL Injection	20 Dec 201400:00	–	packetstorm

Source	Link
piwigo	www.piwigo.org/bugs/view.php
piwigo	www.piwigo.org/bugs/view.php
dl	www.dl.packetstormsecurity.net/1302-exploits/piwigo246-traversalxsrf.txt

OS	OS Version	Architecture	Package	Package Version	Filename
FreeBSD	any	noarch	piwigo	2.4.7	UNKNOWN

Transform Your Security Services

Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.

Book a live demo

06 Feb 2013 00:00Current

6.6Medium risk

Vulners AI Score6.6

CVSS27.6

EPSS0.27279