Piwigo install.php dl Parameter Traversal Arbitrary File Access
Medium Nessus Plugin ID 65769
SynopsisThe remote web server contains a PHP script that is affected by a directory traversal vulnerability.
DescriptionThe version of Piwigo hosted on the remote web server is affected by a directory traversal vulnerability because it fails to properly sanitize user-supplied input to the 'dl' parameter of the 'install.php' script. This vulnerability could allow an unauthenticated, remote attacker to read and delete arbitrary files by forming a request containing directory traversal sequences.
Note that the application is reportedly also affected by a cross-site request forgery vulnerability, although Nessus has not tested this.
SolutionUpgrade to version 2.4.7 or later.