Security Advisory

CVE-2016-10514

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2017-10-10 20:00:00

Last updated 2024-09-17 02:15:43

Assigner mitre

State PUBLISHED

Description

url_check_format in include/functions.inc.php in Piwigo before 2.8.3 allows remote attackers to bypass intended access restrictions via a URL that contains a " character, or a URL beginning with a substring other than the http:// or https:// substring.

← Browse all CVEs View on cve.org ↗