CVE-2021-40317
Piwigo 11.5.0 is affected by a SQL injection via admin.php and the id parameter. Root cause: lack of input validation in the vulnerable query. Impact: potential to execute arbitrary SQL, exposing database data. CVSS data from NVD indicates severity up to HIGH (3.1) / 8.8, with network attack vect...