CVE-2023-37270

high-risk

Published 2023-07-07

Piwigo is open source photo gallery software. Prior to version 13.8.0, there is a SQL Injection vulnerability in the login of the administrator screen. The SQL statement that acquires the HTTP Header `User-Agent` is vulnerable at the endpoint that records user information when logging in to the administrator screen. It is possible to execute arbitrary SQL statements. Someone who wants to exploit the vulnerability must be log in to the administrator screen, even with low privileges. Any SQL statement can be executed. Doing so may leak information from the database. Version 13.8.0 contains a fix for this issue. As another mitigation, those who want to execute a SQL statement verbatim with user-enterable parameters should be sure to escape the parameter contents appropriately.

Do I need to act?

59.2% chance of exploitation in next 30 days

EPSS score — higher than 41% of all CVEs

Not on CISA KEV list

No confirmed active exploitation reported to CISA

Patch status unknown

Check vendor advisories for fix availability and mitigation guidance

CVSS 7.6/10 High

NETWORK / LOW complexity

Affected Products (1)

Piwigo

Affected Vendors

Piwigo

References (10)

Product https://github.com/Piwigo/Piwigo/blob/c01ec38bc43f09424a8d404719c35f963d63cf00/i...

Patch https://github.com/Piwigo/Piwigo/commit/978425527d6c113887f845d75cf982bbb62d761a

Exploit https://github.com/Piwigo/Piwigo/security/advisories/GHSA-934w-qj9p-3qcx

Release Notes https://piwigo.org/release-13.8.0

Product https://github.com/Piwigo/Piwigo/blob/c01ec38bc43f09424a8d404719c35f963d63cf00/i...

Patch https://github.com/Piwigo/Piwigo/commit/978425527d6c113887f845d75cf982bbb62d761a

Exploit https://github.com/Piwigo/Piwigo/security/advisories/GHSA-934w-qj9p-3qcx

Release Notes https://piwigo.org/release-13.8.0

/ 100

high-risk

Severity 27/34 · High

Exploitability 18/34 · Moderate

Exposure 5/34 · Minimal