CVE-2012-2209

NONECVSS 0.0

0.0

Multiple cross-site scripting (XSS) vulnerabilities in admin.php in Piwigo before 2.3.4 allow remote attackers to inject arbitrary web script or HTML via the (1) section parameter in the configuration module, (2) installstatus parameter in the languages_new module, or (3) theme parameter in the theme module.

🔗 References (18)

cve@mitrehttp://archives.neohapsis.com/archives/bugtraq/2012-04/0196.html
cve@mitrehttp://piwigo.org/bugs/view.php?id=2607
cve@mitrehttp://piwigo.org/forum/viewtopic.php?id=19173
cve@mitrehttp://piwigo.org/releases/2.3.4
cve@mitrehttp://secunia.com/advisories/48903
cve@mitrehttp://www.exploit-db.com/exploits/18782
cve@mitrehttp://www.securityfocus.com/bid/53245
cve@mitrehttps://exchange.xforce.ibmcloud.com/vulnerabilities/75186
cve@mitrehttps://www.htbridge.com/advisory/HTB23085
af854a3a-2127-422b-91ae-364da2661108http://archives.neohapsis.com/archives/bugtraq/2012-04/0196.html
af854a3a-2127-422b-91ae-364da2661108http://piwigo.org/bugs/view.php?id=2607
af854a3a-2127-422b-91ae-364da2661108http://piwigo.org/forum/viewtopic.php?id=19173
af854a3a-2127-422b-91ae-364da2661108http://piwigo.org/releases/2.3.4
af854a3a-2127-422b-91ae-364da2661108http://secunia.com/advisories/48903
af854a3a-2127-422b-91ae-364da2661108http://www.exploit-db.com/exploits/18782

Is Your Infrastructure Affected by CVE-2012-2209?

EchelonGraph automatically scans your cloud infrastructure and maps CVE exposure using blast radius analysis.

Start Free Scan →Browse All CVEs

CVE-2012-2209

📅 Published

🔄 Last Modified

🔗 References (18)

Dependency Blast Radius

Is Your Infrastructure Affected by CVE-2012-2209?