Description
Piwigo 2.9.2 has XSS via the name parameter in an admin.php?page=album-3-properties request.
Remediation
References
Related Vulnerabilities
WordPress Plugin WP Cerber Security, Anti-spam & Malware Scan Security Bypass (9.0)
WordPress 4.5.x Arbitrary File Deletion Vulnerability (4.5 - 4.5.14)
Squid Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2019-12528)
WordPress Plugin PWG Random Cross-Site Request Forgery (1.11)
MyBB Permissions, Privileges, and Access Controls Vulnerability (CVE-2010-4624)