CVE-2014-3900
CVE-2014-3900 affects Piwigo 2.6.3 and earlier. An XSS flaw in admin/picture_modify.php (photo-edit subsystem) allows injection of arbitrary script via the associate[] field. Root cause involves insufficient input handling; impact is user browser script execution. Exploitation status is not detai...