CVE-2017-9426
CVE-2017-9426 affects the Piwigo Facetag extension (version 0.0.3). The ws.php component enables SQL injection via the imageId parameter used by facetag.changeTag and facetag.listTags, as described in the CVE entry. The vulnerability is exploitable over the network with no authentication required...