Unrated severityNVD Advisory· Published Feb 20, 2015· Updated Jun 17, 2026
CVE-2015-1517
CVE-2015-1517
Description
SQL injection vulnerability in Piwigo before 2.7.4, when all filters are activated, allows remote authenticated users to execute arbitrary SQL commands via the filter_level parameter in a "Refresh photo set" action in the batch_manager page to admin.php.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2Patches
Vulnerability mechanics
References
5- piwigo.org/releases/2.7.4nvdPatchVendor Advisory
- packetstormsecurity.com/files/130440/Piwigo-2.7.3-SQL-Injection.htmlnvdExploit
- piwigo.org/forum/viewtopic.phpnvdVendor Advisory
- www.securityfocus.com/archive/1/534723/100/0/threadednvd
- www.securityfocus.com/bid/72664nvd
News mentions
0No linked articles in our index yet.