Published: 21/04/2023 Updated: 28/04/2023

CVSS v3 Base Score: 8.8 | Impact Score: 5.9 | Exploitability Score: 2.8

VMScore: 0

SQL injection vulnerability found in Piwigo v.13.5.0 and before allows a remote malicious user to execute arbitrary code via the filter_user_id parameter to the admin.php?page=history&filter_image_id=&filter_user_id endpoint.

Vulnerable Product	Search on Vulmon	Subscribe to Product
piwigo piwigo

Piwigo version 1350 suffers from a remote SQL injection vulnerability ...

This module allows an authenticated user to retrieve the usernames and encrypted passwords of other users in Piwigo through SQL injection using the (filter_user_id) parameter ...

This module allows an authenticated user to retrieve the usernames and encrypted passwords of other users in Piwigo through SQL injection using the (filter_user_id) parameter.

msf > use auxiliary/gather/piwigo_cve_2023_26876
msf auxiliary(piwigo_cve_2023_26876) > show actions
    ...actions...
msf auxiliary(piwigo_cve_2023_26876) > set ACTION < action-name >
msf auxiliary(piwigo_cve_2023_26876) > show options
    ...show and set options...
msf auxiliary(piwigo_cve_2023_26876) > run

CWE-89 https://gist.github.com/rodnt/a190d14d1715890d8df19bad58b90693 https://piwigo.com https://www.tempest.com.br http://seclists.org/fulldisclosure/2023/Apr/13 http://packetstormsecurity.com/files/172059/Piwigo-13.5.0-SQL-Injection.html https://nvd.nist.gov https://packetstormsecurity.com/files/172059/Piwigo-13.5.0-SQL-Injection.html https://www.rapid7.com/db/modules/auxiliary/gather/piwigo_cve_2023_26876/

CVE-2023-26876

Vulnerability Summary

Vulnerability Trend

Exploits

Metasploit Modules

References

Vulmon Search

About

Products

Connect