Full title: Piwigo 2.9.5 Cross Site Scripting / SQL Injection / Command Execution Vulnerabilities Category: web applications Platform: php Piwigo versions 2.9.5 and below suffer from cross site scripting, command execution, and remote SQL injection vulnerabilities. # 0day.today @ http://0day.today/