Vulnerabilities

CVE-2016-10514

by Fred · 10/10/2017

url_check_format in include/functions.inc.php in Piwigo before 2.8.3 allows remote attackers to bypass intended access restrictions via a URL that contains a " character, or a URL beginning with a substring other than the http:// or https:// substring.

Date published : 2017-10-10

http://piwigo.org/releases/2.8.3

https://github.com/Piwigo/Piwigo/commit/b3157cbfd859c914911b114d4edbba4654758b57

Similar

Tags: Cybersecurity Alert