Description
Piwigo v12.2.0 was discovered to contain an information leak via the action parameter in /admin/maintenance_actions.php.
Remediation
References
Related Vulnerabilities
Atlassian Jira Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2017-18033)
Oracle JRE CVE-2013-2461 Vulnerability (CVE-2013-2461)
WordPress Plugin YaySMTP-Simple WP SMTP Mail Information Disclosure (2.2)
MySQL CVE-2016-0649 Vulnerability (CVE-2016-0649)
Apache Traffic Server CVE-2015-5168 Vulnerability (CVE-2015-5168)