Описание
Cross-site scripting (XSS) vulnerability in the administrative backend in Piwigo before 2.7.4 allows remote attackers to inject arbitrary web script or HTML via the page parameter to admin.php.
| Релиз | Статус | Примечание |
|---|---|---|
| devel | DNE | |
| esm-infra-legacy/trusty | DNE | |
| lucid | DNE | |
| precise | ignored | end of life |
| precise/esm | DNE | precise was needed |
| trusty | DNE | |
| trusty/esm | DNE | |
| upstream | needs-triage | |
| utopic | DNE | |
| vivid | DNE |
Показывать по
10
Ссылки на источники
EPSS
Процентиль: 69%
0.0062
Низкий
4.3 Medium
CVSS2
Связанные уязвимости
nvd
почти 11 лет назад
Cross-site scripting (XSS) vulnerability in the administrative backend in Piwigo before 2.7.4 allows remote attackers to inject arbitrary web script or HTML via the page parameter to admin.php.
debian
почти 11 лет назад
Cross-site scripting (XSS) vulnerability in the administrative backend ...
github
больше 3 лет назад
Cross-site scripting (XSS) vulnerability in the administrative backend in Piwigo before 2.7.4 allows remote attackers to inject arbitrary web script or HTML via the page parameter to admin.php.
EPSS
Процентиль: 69%
0.0062
Низкий
4.3 Medium
CVSS2