Description

Piwigo 13.6.0 is vulnerable to Cross Site Request Forgery (CSRF) in the "add tags" function.

Remediation

References

CVE-2023-33359

Related Vulnerabilities

Ruby Other Vulnerability (CVE-2016-2336)

Atlassian Jira URL Redirection to Untrusted Site ('Open Redirect') Vulnerability (CVE-2018-13402)

Oracle JRE CVE-2020-2805 Vulnerability (CVE-2020-2805)

Drupal Core 4.7.x Security Bypass (4.7.0 - 4.7.7)

WordPress URL Redirection to Untrusted Site ('Open Redirect') Vulnerability (CVE-2020-4048)

Severity

Medium

Classification

CVE-2023-33359 CWE-352 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N

Tags

Missing Update Known Vulnerabilities