Lucene search
FreeBSD11351C82-9909-11E5-A9C8-14DAE9D5A9D2HistoryNov 17, 2015 - 12:00 a.m.
piwik -- multiple vulnerabilities
2015-11-1700:00:00
vuxml.freebsd.org
18
7.5 High
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
0.023 Low
EPSS
Percentile
89.8%
Piwik changelog reports:
This release is rated critical.
We are grateful for Security researchers who disclosed
security issues privately to the Piwik Security Response
team: Elamaran Venkatraman, Egidio Romano and Dmitriy
Shcherbatov. The following vulnerabilities were fixed:
XSS, CSRF, possible file inclusion in older PHP versions
(low impact), possible Object Injection Vulnerability
(low impact).
References
Related
nessus
nessus
cvelist
cvelist
CVE-2015-7816
2015-11-16 19:00:00
CVE-2015-7815
2015-11-16 19:00:00
nvd
nvd
CVE-2015-7816
2015-11-16 19:59:05
CVE-2015-7815
2015-11-16 19:59:04
veracode
veracode
Server-side Request Forgery (SSRF)
2017-07-19 22:49:31
Directory Traversal
2017-07-28 09:50:59
prion
prion
Server side request forgery (ssrf)
2015-11-16 19:59:00
Directory traversal
2015-11-16 19:59:00
packetstorm
packetstorm
Piwik 2.14.3 PHP Object Injection
2015-11-04 00:00:00
Piwik 2.14.3 Local File Inclusion
2015-11-04 00:00:00
zdt
zdt
Piwik 2.14.3 PHP Object Injection Vulnerability
2015-11-04 00:00:00
Piwik 2.14.3 Local File Inclusion Vulnerability
2015-11-04 00:00:00
cve
cve
CVE-2015-7816
2015-11-16 19:59:05
CVE-2015-7815
2015-11-16 19:59:04
7.5 High
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
0.023 Low
EPSS
Percentile
89.8%
Related for 11351C82-9909-11E5-A9C8-14DAE9D5A9D2