CVE-2023-27233 Information

Description

Piwigo v13.5.0 was discovered to contain a SQL injection vulnerability via the order[0][dir] parameter at user_list_backend.php.

Reference

https://gist.github.com/renanavs/dcb13bb1cd618ce7eb0c80290b837245