Design/Logic Flaw

2013-03-2121:55:00

PRIOn knowledge base

www.prio-n.com

6.5 Medium

AI Score

Confidence

Low

0.001 Low

EPSS

Percentile

32.9%

JSON

Piwik before 1.11 accepts input from a POST request instead of a GET request in unspecified circumstances, which might allow attackers to obtain sensitive information by leveraging the logging of parameters.

CPENameOperatorVersion
matomoeq1.0
matomoeq1.1
matomoeq1.1.1
matomoeq1.2
matomoeq1.2.1
matomoeq1.3
matomoeq1.4
matomoeq1.5
matomoeq1.5.1
matomoeq1.6

Name	Operator	Version
matomo	eq	1.0
matomo	eq	1.1
matomo	eq	1.1.1
matomo	eq	1.2
matomo	eq	1.2.1
matomo	eq	1.3
matomo	eq	1.4
matomo	eq	1.5
matomo	eq	1.5.1
matomo	eq	1.6

Rows per page:

1-10 of 211

References

piwik.org/blog/2013/03/piwik-1-11/