4 matches found
CMS Piwigo 2.7.3 Cross Site Scripting / SQL Injection
Advisory: Reflecting XSS- and SQL Injection vulnerability in CMS Piwigo = v. 2.7.3 Advisory ID: SROEADV-2015-06 Author: Steffen Rösemann Affected Software: CMS Piwigo = v. 2.7.3 Release date: 9th January 2015 Vendor URL: http://piwigo.org Vendor Status: patched CVE-ID: - =========================...
Piwigo 2.5.3 CMS - Multiple Web Vulnerabilities
Exploit for php platform in category web applications 1 Stored XSS on Multiple parameters click on Add photos http://127.0.0.1/cms/piwigo/admin.php?page=photosadd and click on "create new album" in the album name enter the payload " and save it we can see that our payload gets executed.we can als...
Piwigo CMS 2.5.3 - Multiple Web Vulnerabilities
Piwigo CMS 2.5.3 - Multiple Web Vulnerabilities Exploit Title: Piwigo 2.5.3 CMS:Multiple vulnerability's Author: sajith version: Piwigo 2.5.3 Vendor Homepage: http://piwigo.org vulnerable app link:http://www.piwigo.org/basics/downloads 1 Stored XSS on Multiple parameters click on Add photos...
Piwigo CMS 2.5.3 - Multiple Web Vulnerabilities
Exploit Title: Piwigo 2.5.3 CMS:Multiple vulnerability's Author: sajith version: Piwigo 2.5.3 Vendor Homepage: http://piwigo.org vulnerable app link:http://www.piwigo.org/basics/downloads 1 Stored XSS on Multiple parameters click on Add photos http://127.0.0.1/cms/piwigo/admin.php?page=photosadd...