Security Advisory

CVE-2022-24620

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2022-02-23 14:26:24

Last updated 2024-08-03 04:13:57

Assigner mitre

State PUBLISHED

Description

Piwigo version 12.2.0 is vulnerable to stored cross-site scripting (XSS), which can lead to privilege escalation. In this way, admin can steal webmasters cookies to get the webmasters access.

← Browse all CVEs View on cve.org ↗