Description
Cross-site request forgery (CSRF) vulnerability in Piwigo through 2.9.1 allows remote attackers to hijack the authentication of users for requests to delete permalinks via a crafted request.
Remediation
References
Related Vulnerabilities
WordPress Plugin Print Invoice & Delivery Notes for WooCommerce Cross-Site Scripting (4.7.1)
WordPress Plugin OneClick Chat to Order Cross-Site Scripting (1.0.4.1)
WordPress Plugin Custom Text Selection Colors Cross-Site Scripting (1.0)
MySQL CVE-2015-4864 Vulnerability (CVE-2015-4864)
Moodle Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2017-12157)