2 matches found
Piwigo Cross-Site Scripting Vulnerability (CNVD-2019-32000)
Piwigo is a web-based photo album software from the Piwigo team. The software supports photo publishing, management, multiple browsing options categories, tags, time and more. A cross-site scripting vulnerability exists in admin.php?page=notificationbymail in Piwigo version 2.9.5. The vulnerabili...
PT-2019-13293 · Piwigo · Piwigo
Name of the Vulnerable Software and Affected Versions: Piwigo version 2.9.5 Description: The issue concerns a Cross-Site Scripting XSS exploit in the admin.php?page=notification by mail endpoint. This exploit is achievable through several parameters: nbm send html mail, nbm send mail as, nbm send...