Description Piwigo 11.5.0 is affected by a SQL injection vulnerability via admin.php and the id parameter. Remediation References CVE-2021-40317 Related Vulnerabilities WordPress Plugin WordPress Ping Optimizer Cross-Site Request Forgery (2.35.1.2.3) WordPress Plugin RSVPMaker SQL Injection (9.2.5) WordPress Plugin MWB Point of Sale (POS) for WooCommerce-Generate Barcodes, Process your Bills, Synchronize, Your Online-Offline Orders Cross-Site Request Forgery (1.0.0) Oracle Database Server CVE-2011-2244 Vulnerability (CVE-2011-2244) WordPress 4.6.x Arbitrary File Deletion Vulnerability (4.6 - 4.6.11) Severity High Classification CVE-2021-40317 CWE-138 CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H Tags Missing Update Known Vulnerabilities