FreeBSD VuXML: Documenting security issues in FreeBSD and the FreeBSD Ports Collection

piwik -- multiple vulnerabilities

Affected packages
piwik < 2.15.0

Details

VuXML ID 11351c82-9909-11e5-a9c8-14dae9d5a9d2
Discovery 2015-11-17
Entry 2015-12-02

Piwik changelog reports:

This release is rated critical. We are grateful for Security researchers who disclosed security issues privately to the Piwik Security Response team: Elamaran Venkatraman, Egidio Romano and Dmitriy Shcherbatov. The following vulnerabilities were fixed: XSS, CSRF, possible file inclusion in older PHP versions (low impact), possible Object Injection Vulnerability (low impact).

[source]

References

CVE Name CVE-2015-7815
CVE Name CVE-2015-7816
URL http://piwik.org/changelog/piwik-2-15-0/

Copyright © 2003-2005 Jacques Vidrine and contributors.
Please see the source of this document for full copyright information.