CVE-2022-24620

  1. OpenCVE
  2. Vulnerabilities (CVE)
  3. CVE-2022-24620
Piwigo version 12.2.0 is vulnerable to stored cross-site scripting (XSS), which can lead to privilege escalation. In this way, admin can steal webmaster's cookies to get the webmaster's access.
CVSS

No CVSS.

References
Link Resource
https://github.com/Piwigo/Piwigo/issues/1605
Configurations

No configuration.

Information

Published : 2022-02-24 15:15

Updated : 2022-02-24 16:02

NVD link : CVE-2022-24620

Mitre link : CVE-2022-24620

JSON object : View

Products Affected

No product.

CWE

No CWE.