CVE-2017-17826

CVE-2017-17826

The Configuration component of Piwigo 2.9.2 is vulnerable to Persistent Cross Site Scripting via the gallery_title parameter in an admin.php?page=configuration&section=main request. An attacker can exploit this to hijack a client’s browser along with the data stored in it.

Source: CVE-2017-17826

답글 남기기

이메일 주소는 공개되지 않습니다. 필수 필드는 *로 표시됩니다