PT-2019-6781 · Piwigo · Piwigo

Raphael Geissert

Published

2019-12-02

Updated

2019-12-04

CVE-2012-4526

CVSS v2.0

4.3

Medium

Vector

AV:N/AC:M/Au:N/C:N/I:P/A:N

Name of the Vulnerable Software and Affected Versions piwigo (affected versions not specified)

Description The issue is related to an incomplete fix for a previous security problem in the password.php file, which results in a cross-site scripting (XSS) issue.

Recommendations At the moment, there is no information about a newer version that contains a fix for this issue.

Fix

XSS

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-79

Related Identifiers

CVE-2012-4526

Affected Products

Piwigo

PT-2019-6781 · Piwigo · Piwigo

CVE-2012-4526

Weakness Enumeration

Related Identifiers

Affected Products

References · 8