CVE-2018-7723
CVE-2018-7723
The management panel in Piwigo 2.9.3 has stored XSS via the virtual_name parameter in a /admin.php?page=cat_list request, a different issue than CVE-2017-9836. CSRF exploitation, related to CVE-2017-10681, may be possible.
Affected products
n/a · n/aWant to know if your infrastructure is exposed to this?
Talk to TrueHacking →