CVE-2018-7723

Posted on by admin

CVE-2018-7723

The management panel in Piwigo 2.9.3 has stored XSS via the virtual_name parameter in a /admin.php?page=cat_list request, a different issue than CVE-2017-9836. CSRF exploitation, related to CVE-2017-10681, may be possible.

Source: CVE-2018-7723

답글 남기기

이메일 주소는 공개되지 않습니다. 필수 필드는 *로 표시됩니다