sahildhar - Security Researcher - Exploit Intelligence Platform

CVE-2017-17822 WRITEUP MEDIUM WRITEUP

Piwigo 2.9.2 - SQL Injection via List Users API sSortDir_0 Parameter

The List Users API of Piwigo 2.9.2 is vulnerable to SQL Injection via the /admin/user_list_backend.php sSortDir_0 parameter. An attacker can exploit this to gain access to the data in a connected MySQL database.

CVSS 4.9

View Code

CVE-2017-17823 WRITEUP MEDIUM WRITEUP

Piwigo 2.9.2 - SQL Injection via Configuration Order By Parameter

The Configuration component of Piwigo 2.9.2 is vulnerable to SQL Injection via the admin/configuration.php order_by array parameter. An attacker can exploit this to gain access to the data in a connected MySQL database.

CVSS 4.9

View Code

CVE-2017-17824 WRITEUP MEDIUM WRITEUP

Piwigo 2.9.2 - SQL Injection via Batch Manager Unit Mode element_ids Parameter

The Batch Manager component of Piwigo 2.9.2 is vulnerable to SQL Injection via the admin/batch_manager_unit.php element_ids parameter in unit mode. An attacker can exploit this to gain access to the data in a connected MySQL database.

CVSS 4.9

View Code

CVE-2017-17825 WRITEUP MEDIUM WRITEUP

Piwigo 2.9.2 - Stored Cross-Site Scripting in Batch Manager via tags-* Parameters

The Batch Manager component of Piwigo 2.9.2 is vulnerable to Persistent Cross Site Scripting via tags-* array parameters in an admin.php?page=batch_manager&mode=unit request. An attacker can exploit this to hijack a client's browser along with the data stored in it.

CVSS 4.8

View Code

CVE-2017-17826 WRITEUP MEDIUM WRITEUP

Piwigo 2.9.2 - Stored Cross-Site Scripting via Gallery Title Parameter

The Configuration component of Piwigo 2.9.2 is vulnerable to Persistent Cross Site Scripting via the gallery_title parameter in an admin.php?page=configuration&section=main request. An attacker can exploit this to hijack a client's browser along with the data stored in it.

CVSS 6.1

View Code

CVE-2017-17827 WRITEUP HIGH WRITEUP

Piwigo 2.9.2 - Cross-Site Request Forgery via Admin Configuration or Batch Manager

Piwigo 2.9.2 is vulnerable to Cross-Site Request Forgery via /admin.php?page=configuration&section=main or /admin.php?page=batch_manager&mode=unit. An attacker can exploit this to coerce an admin user into performing unintended actions.

CVSS 8.8

View Code