21 matches found
CVE-2020-8089
Piwigo 2.10.1 is affected by stored XSS via the Group Name Field to the grouplist page...
CVE-2020-22148
A stored cross site scripting XSS vulnerability in /admin.php?page=tags of Piwigo 2.10.1 allows attackers to execute arbitrary web scripts or HTML...
CVE-2020-22150
A cross site scripting XSS vulnerability in /admin.php?page=permalinks of Piwigo 2.10.1 allows attackers to execute arbitrary web scripts or HTML...
CVE-2020-22150
A cross site scripting XSS vulnerability in /admin.php?page=permalinks of Piwigo 2.10.1 allows attackers to execute arbitrary web scripts or HTML...
CVE-2020-22148
A stored cross site scripting XSS vulnerability in /admin.php?page=tags of Piwigo 2.10.1 allows attackers to execute arbitrary web scripts or HTML...
Cross site scripting
A cross site scripting XSS vulnerability in /admin.php?page=permalinks of Piwigo 2.10.1 allows attackers to execute arbitrary web scripts or HTML...
CVE-2020-22150
CVE-2020-22150 describes a cross-site scripting (XSS) vulnerability in Piwigo 2.10.1, specifically in /admin.php?page=permalinks, allowing execution of arbitrary web scripts or HTML. Connected sources corroborate XSS in Piwigo and indicate variants affecting Piwigo up to 2.10.2 (OpenVAS listing)....
CVE-2020-22150
A cross site scripting XSS vulnerability in /admin.php?page=permalinks of Piwigo 2.10.1 allows attackers to execute arbitrary web scripts or HTML...
CVE-2020-22148
CVE-2020-22148 affects Piwigo 2.10.1. The vulnerability is a stored cross-site scripting (XSS) in /admin.php?page=tags that allows attackers to execute arbitrary web scripts or HTML. This is described across multiple sources in the connected documents. No remediation details are provided in the g...
Piwigo 2.10.1 Cross Site Scripting
Exploit Title: Piwigo 2.10.1 - Cross Site Scripting POC by: Iridium Software Homepage: http://www.piwigo.org Version : 2.10.1 Tested on: Linux & Windows Category: webapps Google Dork: intext: "Powered by Piwigo" CVE : CVE-2020-9467 Description Piwigo 2.10.1 has stored XSS via the file parameter i...
Piwigo 2.10.1 - Cross Site Scripting
Exploit Title: Piwigo 2.10.1 - Cross Site Scripting POC by: Iridium Software Homepage: http://www.piwigo.org Version : 2.10.1 Tested on: Linux & Windows Category: webapps Google Dork: intext: "Powered by Piwigo" CVE : CVE-2020-9467 Description Piwigo 2.10.1 has stored XSS via the file parameter i...
CVE-2020-9467
Piwigo 2.10.1 has stored XSS via the file parameter in a /ws.php request because of the pwg.images.setInfo function...
CVE-2020-9467
Piwigo 2.10.1 has stored XSS via the file parameter in a /ws.php request because of the pwg.images.setInfo function...
CVE-2020-9467
Piwigo 2.10.1 has stored XSS via the file parameter in a /ws.php request because of the pwg.images.setInfo function...
Cross site scripting
Piwigo 2.10.1 has stored XSS via the file parameter in a /ws.php request because of the pwg.images.setInfo function...
CVE-2020-9467
Piwigo 2.10.1 has stored XSS via the file parameter in a /ws.php request because of the pwg.images.setInfo function...
CVE-2020-8089
Piwigo 2.10.1 is affected by stored XSS via the Group Name Field to the grouplist page...
CVE-2020-8089
Piwigo 2.10.1 is affected by stored XSS via the Group Name Field to the grouplist page...
CVE-2020-8089
Piwigo 2.10.1 is affected by stored XSS via the Group Name Field to the grouplist page...
Cross site scripting
Piwigo 2.10.1 is affected by stored XSS via the Group Name Field to the grouplist page...