Lucene search
K

8 matches found

Exploit DB
Exploit DB
added 2025/12/02 12:0 a.m.158 views

Piwigo 13.6.0 - SQL Injection

Exploit Title: Piwigo 13.6.0 - SQL Injection Date: 2025-11-25 Exploit Author: CodeSecLab Vendor Homepage: https://github.com/Piwigo/Piwigo Software Link: https://github.com/Piwigo/Piwigo Version: 13.6.0 Tested on: Windows CVE : CVE-2023-33362 Proof Of Concept: GET /admin.php?page=profile&userid='...

9.8CVSS7AI score0.09058EPSS
Exploits3
RedhatCVE
RedhatCVE
added 2025/05/23 3:52 a.m.6 views

CVE-2023-33359

Piwigo 13.6.0 is vulnerable to Cross Site Request Forgery CSRF in the "add tags" function...

4.3CVSS6.9AI score0.00391EPSS
Exploits1References1
NVD
NVD
added 2023/05/23 2:15 p.m.36 views

CVE-2023-33362

Piwigo 13.6.0 is vulnerable to SQL Injection via in the "profile" function...

9.8CVSS9.8AI score0.09058EPSS
Exploits3References2
NVD
NVD
added 2023/05/23 2:15 p.m.8 views

CVE-2023-33361

Piwigo 13.6.0 is vulnerable to SQL Injection via /admin/permalinks.php...

9.8CVSS9.9AI score0.00915EPSS
Exploits1References1
Prion
Prion
added 2023/05/23 2:15 p.m.13 views

Sql injection

Piwigo 13.6.0 is vulnerable to SQL Injection via /admin/permalinks.php...

7.5CVSS9.8AI score0.00915EPSS
Exploits1References1Affected Software1
Prion
Prion
added 2023/05/23 2:15 p.m.11 views

Cross site request forgery (csrf)

Piwigo 13.6.0 is vulnerable to Cross Site Request Forgery CSRF in the "add tags" function...

4.3CVSS4.8AI score0.00391EPSS
Exploits1References1Affected Software1
Cvelist
Cvelist
added 2023/05/23 12:0 a.m.17 views

CVE-2023-33361

Piwigo 13.6.0 is vulnerable to SQL Injection via /admin/permalinks.php...

10AI score0.00915EPSS
Exploits1References1
Cvelist
Cvelist
added 2023/05/23 12:0 a.m.26 views

CVE-2023-33359

Piwigo 13.6.0 is vulnerable to Cross Site Request Forgery CSRF in the "add tags" function...

5AI score0.00391EPSS
Exploits1References1
Rows per page
Query Builder