Back to list
*Note: Email address will appear as "user domain ext" to prevent harvesting.
Multiple vulnerabilities in Piwigo
Apr 25 2012 10:38AM
advisory htbridge com
Advisory ID: HTB23085
Vendor: Piwigo project
Vulnerable Version(s): 2.3.3 and probably prior
Tested Version: 2.3.3
Vendor Notification: 4 April 2012
Vendor Patch: 8 April 2012
Public Disclosure: 25 April 2012
Vulnerability Type: Directory Path Traversal, Cross-Site Scripting (XSS)...
[ more ]
Copyright 2010, SecurityFocus