Lucene search
K

11 matches found

RedhatCVE
RedhatCVE
added 2025/05/22 10:6 a.m.5 views

CVE-2019-13364

admin.php?page=accountbilling in Piwigo 2.9.5 has XSS via the vatnumber, billingname, company, or billingaddress parameter. This is exploitable via CSRF...

9.6CVSS5.8AI score0.01355EPSS
Exploits4References1
RedhatCVE
RedhatCVE
added 2025/05/22 10:5 a.m.9 views

CVE-2019-13363

admin.php?page=notificationbymail in Piwigo 2.9.5 has XSS via the nbmsendhtmlmail, nbmsendmailas, nbmsenddetailedcontent, nbmcomplementarymailcontent, nbmsendrecentpostdates, or paramsubmit parameter. This is exploitable via CSRF...

9.6CVSS5.8AI score0.01355EPSS
Exploits4References1
Packet Storm
Packet Storm
added 2019/09/23 12:0 a.m.305 views

Piwigo 2.9.5 Cross Site Scripting / SQL Injection / Command Execution

/ / / / / / / / / / / / / / / / / / / / / \ / // / // / / / / / / / // / / / /,/// // /// // GulfTech Research and Development Piwigo = 2.9.5 Multiple Vulnerabilities Released Date: 2019-09-22 Last Modified: 2019-09-22 Company Info: Piwigo.org Version Info: Vulnerable Piwigo = 2.9.5 -- Table...

0.3AI score
Exploits0
OSV
OSV
added 2019/09/13 1:15 p.m.14 views

CVE-2019-13363

admin.php?page=notificationbymail in Piwigo 2.9.5 has XSS via the nbmsendhtmlmail, nbmsendmailas, nbmsenddetailedcontent, nbmcomplementarymailcontent, nbmsendrecentpostdates, or paramsubmit parameter. This is exploitable via CSRF...

9.6CVSS5.8AI score
Exploits0References5
NVD
NVD
added 2019/09/13 1:15 p.m.25 views

CVE-2019-13363

admin.php?page=notificationbymail in Piwigo 2.9.5 has XSS via the nbmsendhtmlmail, nbmsendmailas, nbmsenddetailedcontent, nbmcomplementarymailcontent, nbmsendrecentpostdates, or paramsubmit parameter. This is exploitable via CSRF...

9.6CVSS8.9AI score0.01355EPSS
Exploits4References5
OSV
OSV
added 2019/09/13 1:15 p.m.10 views

CVE-2019-13364

admin.php?page=accountbilling in Piwigo 2.9.5 has XSS via the vatnumber, billingname, company, or billingaddress parameter. This is exploitable via CSRF...

9.6CVSS5.8AI score
Exploits0References5
Prion
Prion
added 2019/09/13 1:15 p.m.16 views

Cross site request forgery (csrf)

admin.php?page=notificationbymail in Piwigo 2.9.5 has XSS via the nbmsendhtmlmail, nbmsendmailas, nbmsenddetailedcontent, nbmcomplementarymailcontent, nbmsendrecentpostdates, or paramsubmit parameter. This is exploitable via CSRF...

6.8CVSS8.7AI score0.01355EPSS
Exploits4References5Affected Software1
Prion
Prion
added 2019/09/13 1:15 p.m.15 views

Cross site request forgery (csrf)

admin.php?page=accountbilling in Piwigo 2.9.5 has XSS via the vatnumber, billingname, company, or billingaddress parameter. This is exploitable via CSRF...

6.8CVSS8.7AI score0.01355EPSS
Exploits4References5Affected Software1
Cvelist
Cvelist
added 2019/09/13 12:22 p.m.33 views

CVE-2019-13363

admin.php?page=notificationbymail in Piwigo 2.9.5 has XSS via the nbmsendhtmlmail, nbmsendmailas, nbmsenddetailedcontent, nbmcomplementarymailcontent, nbmsendrecentpostdates, or paramsubmit parameter. This is exploitable via CSRF...

9AI score0.01355EPSS
Exploits4References5
CVE
CVE
added 2019/09/13 12:22 p.m.171 views

CVE-2019-13363

CVE-2019-13363 affects Piwigo 2.9.5. The vulnerability is a Cross‑Site Scripting (XSS) in the admin.php?page=notification_by_mail endpoint, exploitable via parameters such as nbm_send_html_mail, nbm_send_mail_as, nbm_send_detailed_content, nbm_complementary_mail_content, nbm_send_recent_post_date...

9.6CVSS8.8AI score0.01355EPSS
Exploits4References5Affected Software1
Positive Technologies
Positive Technologies
added 2019/09/13 12:0 a.m.6 views

PT-2019-13293 · Piwigo · Piwigo

Name of the Vulnerable Software and Affected Versions: Piwigo version 2.9.5 Description: The issue concerns a Cross-Site Scripting XSS exploit in the admin.php?page=notification by mail endpoint. This exploit is achievable through several parameters: nbm send html mail, nbm send mail as, nbm send...

9.6CVSS8.4AI score0.01355EPSS
Exploits4References10
Rows per page
Query Builder