11 matches found
CVE-2013-1468
Cross-site request forgery CSRF vulnerability in the LocalFiles Editor plugin in Piwigo before 2.4.7 allows remote attackers to hijack the authentication of administrators for requests that create arbitrary PHP files via unspecified vectors...
CVE-2013-1468
Cross-site request forgery CSRF vulnerability in the LocalFiles Editor plugin in Piwigo before 2.4.7 allows remote attackers to hijack the authentication of administrators for requests that create arbitrary PHP files via unspecified vectors...
CVE-2013-1468
CVE-2013-1468: Piwigo LocalFiles Editor plugin contains a CSRF vulnerability (pre-2.4.7) that enables an attacker to hijack administrator authentication and cause creation of arbitrary PHP files via unspecified vectors. Public details in the NVD description confirm the CSRF flaw with impact on in...
CVE-2013-1468
Cross-site request forgery CSRF vulnerability in the LocalFiles Editor plugin in Piwigo before 2.4.7 allows remote attackers to hijack the authentication of administrators for requests that create arbitrary PHP files via unspecified vectors...
Multiple Vulnerabilities in Piwigo
Advisory ID: HTB23144 Product: Piwigo Vendor: Piwigo project Vulnerable Versions: 2.4.6 and probably prior Tested Version: 2.4.6 Vendor Notification: February 6, 2013 Vendor Patch: February 19, 2013 Public Disclosure: February 27, 2013 Vulnerability Type: Cross-Site Request Forgery CWE-352, Path...
Piwigo 2.4.6 - Multiple Vulnerabilities
Piwigo 2.4.6 - Multiple Vulnerabilities Advisory ID: HTB23144 Product: Piwigo Vendor: Piwigo project Vulnerable Versions: 2.4.6 and probably prior Tested Version: 2.4.6 Vendor Notification: February 6, 2013 Vendor Patch: February 19, 2013 Public Disclosure: February 27, 2013 Vulnerability Type:...
Piwigo 2.4.6 - Multiple Vulnerabilities
High-Tech Bridge SA Security Research Lab has discovered multiple vulnerabilities in Piwigo, which can be exploited to perform Сross-Site Request Forgery and Path Traversal attacks. Advisory Details: High-Tech Bridge SA Security Research Lab has discovered multiple vulnerabilities in Piwigo, whic...
Piwigo 2.4.6 Cross Site Request Forgery / Traversal Vulnerabilities
Piwigo version 2.4.5 suffers from cross site request forgery and path traversal vulnerabilities. Product: Piwigo Vendor: Piwigo project Vulnerable Versions: 2.4.6 and probably prior Tested Version: 2.4.6 Vendor Notification: February 6, 2013 Vendor Patch: February 19, 2013 Public Disclosure:...
CVE-2013-1468
creationtimestamp| type| source ---|---|--- 2013-03-01 00:00:00+00:00| confirmed| https://www.exploit-db.com/exploits/24561...
Piwigo 2.4.6 - Multiple Vulnerabilities
Advisory ID: HTB23144 Product: Piwigo Vendor: Piwigo project Vulnerable Versions: 2.4.6 and probably prior Tested Version: 2.4.6 Vendor Notification: February 6, 2013 Vendor Patch: February 19, 2013 Public Disclosure: February 27, 2013 Vulnerability Type: Cross-Site Request Forgery CWE-352, Path...
Piwigo 2.4.6 Cross Site Request Forgery / Traversal
Advisory ID: HTB23144 Product: Piwigo Vendor: Piwigo project Vulnerable Versions: 2.4.6 and probably prior Tested Version: 2.4.6 Vendor Notification: February 6, 2013 Vendor Patch: February 19, 2013 Public Disclosure: February 27, 2013 Vulnerability Type: Cross-Site Request Forgery CWE-352, Path...