Description piwigo 11.5.0 is affected by a remote code execution (RCE) vulnerability in the LocalFiles Editor. Remediation References CVE-2021-40553 Related Vulnerabilities WordPress Plugin WP-ViperGB Cross-Site Scripting (1.3.15) WordPress Plugin AdVert Cross-Site Scripting (1.0.5) WordPress Plugin Timetable and Event Schedule by MotoPress Cross-Site Scripting (2.3.18) Joomla Insufficient Session Expiration Vulnerability (CVE-2021-26037) WordPress Plugin StatPressCN 'wp-admin/admin.php' Multiple Cross-Site Scripting Vulnerabilities (1.9.0) Severity High Classification CVE-2021-40553 CWE-138 CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H Tags Missing Update Known Vulnerabilities