Description Piwigo 13.6.0 is vulnerable to SQL Injection via /admin/permalinks.php. Remediation References CVE-2023-33361 Related Vulnerabilities WordPress Plugin YITH WooCommerce Ajax Search Security Bypass (1.6.9) WordPress Plugin Advanced Dynamic Pricing for WooCommerce Multiple Vulnerabilities (4.1.5) WordPress Plugin Sticky Menu on Scroll, Sticky Header, Sticky Welcome Bar for Any Theme-myStickymenu Unspecified Vulnerability (2.1.4) phpMyAdmin Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2017-1000015) PHP Improper Input Validation Vulnerability (CVE-2014-3710) Severity Critical Classification CVE-2023-33361 CWE-138 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H Tags Missing Update Known Vulnerabilities