Description
A stored cross site scripting (XSS) vulnerability in /admin.php?page=tags of Piwigo 2.10.1 allows attackers to execute arbitrary web scripts or HTML.
Remediation
References
Related Vulnerabilities
WordPress Plugin Event Management Tickets Booking By Event Monster Cross-Site Scripting (1.0.7)
Magento Incorrect Authorization Vulnerability (CVE-2022-34255)
WordPress Plugin Contact Form by Supsystic Multiple Vulnerabilities (1.7.5)
Grafana Missing Authentication for Critical Function Vulnerability (CVE-2019-15043)
CakePHP Improper Input Validation Vulnerability (CVE-2010-4335)