Piwigo Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2009-4039)

Description

Cross-site scripting (XSS) vulnerability in Piwigo before 2.0.6 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.

Remediation

References

CVE-2009-4039

Related Vulnerabilities

Opencart Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') Vulnerability (CVE-2009-1621)

WordPress Plugin 123devis-affiliation Cross-Site Scripting (1.0.4)

Plone CMS Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2016-7147)

WordPress Plugin WP-DownloadManager Cross-Site Scripting (1.67)

WordPress Plugin Customize Youtube Videos Multiple Vulnerabilities (0.2)

Severity

Medium

Classification

CVE-2009-4039 CWE-707

Description

Remediation

References

Related Vulnerabilities

Severity

Classification

Tags

Take action and discover your vulnerabilities