FreeBSD VuXML: Documenting security issues in FreeBSD and the FreeBSD Ports Collection

piwik -- multiple vulnerabilities

Affected packages
piwik < 2.15.0


VuXML ID 11351c82-9909-11e5-a9c8-14dae9d5a9d2
Discovery 2015-11-17
Entry 2015-12-02

Piwik changelog reports:

This release is rated critical. We are grateful for Security researchers who disclosed security issues privately to the Piwik Security Response team: Elamaran Venkatraman, Egidio Romano and Dmitriy Shcherbatov. The following vulnerabilities were fixed: XSS, CSRF, possible file inclusion in older PHP versions (low impact), possible Object Injection Vulnerability (low impact).


CVE Name CVE-2015-7815
CVE Name CVE-2015-7816