Multiple vulnerabilities in Piwigo
| Risk | High |
| Patch available | YES |
| Number of vulnerabilities | 2 |
| CVE-ID | CVE-2013-1468 CVE-2013-1469 |
| CWE-ID | CWE-352 CWE-22 |
| Exploitation vector | Network |
| Public exploit |
Public exploit code for vulnerability #1 is available. Public exploit code for vulnerability #2 is available. |
| Vulnerable software |
Piwigo Web applications / CMS |
| Vendor | Piwigo.org |
Security Bulletin
This security bulletin contains information about 2 vulnerabilities.
1) Cross-site request forgery
EUVDB-ID: #VU43005
Risk: High
CVSSv4.0: 8.2 [CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:P/U:Amber]
CVE-ID: CVE-2013-1468
CWE-ID:
CWE-352 - Cross-Site Request Forgery (CSRF)
Exploit availability: Yes
DescriptionThe vulnerability allows a remote attacker to perform cross-site request forgery attacks.
The vulnerability exists due to insufficient validation of the HTTP request origin. A remote attacker can trick the victim to visit a specially crafted web page and perform arbitrary actions on behalf of the victim on the vulnerable website.
MitigationInstall update from vendor's website.
Vulnerable software versionsPiwigo: 1.0.0 - 2.4.5
CPE2.3- cpe:2.3:a:piwigo_org:piwigo:1.0.0:*:*:*:*:*:*:*
- cpe:2.3:a:piwigo_org:piwigo:1.0.1:*:*:*:*:*:*:*
- cpe:2.3:a:piwigo_org:piwigo:1.0.2:*:*:*:*:*:*:*
https://archives.neohapsis.com/archives/bugtraq/2013-02/0153.html
https://packetstormsecurity.com/files/120592/Piwigo-2.4.6-Cross-Site-Request-Forgery-Traversal.html
https://piwigo.org/bugs/view.php?id=0002844
https://piwigo.org/forum/viewtopic.php?id=21470
https://piwigo.org/releases/2.4.7
https://secunia.com/advisories/52228
https://www.exploit-db.com/exploits/24561
https://www.osvdb.org/90504
https://www.htbridge.com/advisory/HTB23144
Q & A
Can this vulnerability be exploited remotely?
Yes. This vulnerability can be exploited by a remote non-authenticated attacker via the Internet.
Is there known malware, which exploits this vulnerability?
No. We are not aware of malware exploiting this vulnerability. However, proof of concept for this vulnerability is available.
2) Path traversal
EUVDB-ID: #VU43006
Risk: Medium
CVSSv4.0: 2.9 [CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:N/VC:L/VI:N/VA:L/SC:N/SI:N/SA:N/E:P/U:Green]
CVE-ID: CVE-2013-1469
CWE-ID:
CWE-22 - Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal')
Exploit availability: Yes
DescriptionThe vulnerability allows a remote attacker to perform directory traversal attacks.
The vulnerability exists due to input validation error when processing directory traversal sequences in install.php in Piwigo before 2.4.7. A remote authenticated attacker can send a specially crafted HTTP request and remote attackers to read and delete arbitrary files via a . (dot dot) in the dl parameter.
MitigationInstall update from vendor's website.
Vulnerable software versionsPiwigo: 1.0.0 - 2.4.5
CPE2.3- cpe:2.3:a:piwigo_org:piwigo:1.0.0:*:*:*:*:*:*:*
- cpe:2.3:a:piwigo_org:piwigo:1.0.1:*:*:*:*:*:*:*
- cpe:2.3:a:piwigo_org:piwigo:1.0.2:*:*:*:*:*:*:*
https://archives.neohapsis.com/archives/bugtraq/2013-02/0153.html
https://packetstormsecurity.com/files/120592/Piwigo-2.4.6-Cross-Site-Request-Forgery-Traversal.html
https://piwigo.org/bugs/view.php?id=0002843
https://piwigo.org/forum/viewtopic.php?id=21470
https://piwigo.org/releases/2.4.7
https://www.exploit-db.com/exploits/24561
https://www.zeroscience.mk/en/vulnerabilities/ZSL-2013-5127.php
https://www.htbridge.com/advisory/HTB23144
Q & A
Can this vulnerability be exploited remotely?
Yes. This vulnerability can be exploited by a remote non-authenticated attacker via the Internet.
Is there known malware, which exploits this vulnerability?
No. We are not aware of malware exploiting this vulnerability. However, proof of concept for this vulnerability is available.
