3 matches found
CVE-2013-2633
Piwik before 1.11 accepts input from a POST request instead of a GET request in unspecified circumstances, which might allow attackers to obtain sensitive information by leveraging the logging of parameters...
CVE-2013-2633
Piwik (Matomo) before 1.11 accepts input via POST in unspecified circumstances instead of GET, potentially causing information disclosure by logging request parameters. Affected component: input handling/logging in Piwik; root cause: POST handling leads to sensitive data appearing in logs. Impact...
CVE-2013-2633
Piwik before 1.11 accepts input from a POST request instead of a GET request in unspecified circumstances, which might allow attackers to obtain sensitive information by leveraging the logging of parameters...