2 matches found
CVE-2021-32615
Piwigo 11.4.0 allows admin/userlistbackend.php order0dir SQL Injection...
CVE-2021-32615
CVE-2021-32615 affects Piwigo 11.4.0 and is caused by an SQL injection in the admin/user_list_backend.php endpoint via the order[0][dir] parameter, potentially exposing sensitive database information. The core details come from multiple sources (NVD, CNVD/CNNVD, Red Hat, OSV, OpenVAS) confirming ...