CVE-2016-10514

Published: 2017-10-10T20:29Z

Last Modified: 2024-11-21T02:44Z

Source: MITRE CVE List

License: MITRE-CVE-TOS

url_check_format in include/functions.inc.php in Piwigo before 2.8.3 allows remote attackers to bypass intended access restrictions via a URL that contains a " character, or a URL beginning with a substring other than the http:// or https:// substring. > MITRE Terms of Use apply – see LICENSE‑MITRE.txt