Описание
Piwik (now Matomo) Reveals Sensitive Information by Accepting Input from POST Requests
Piwik before 1.11 accepts input from a POST request instead of a GET request in unspecified circumstances, which might allow attackers to obtain sensitive information by leveraging the logging of parameters.
Пакеты
Наименование
matomo/matomo
composer
Затронутые версииВерсия исправления
< 1.11
1.11
Наименование
piwik/piwik
composer
Затронутые версииВерсия исправления
< 1.11
1.11
Связанные уязвимости
nvd
почти 13 лет назад
Piwik before 1.11 accepts input from a POST request instead of a GET request in unspecified circumstances, which might allow attackers to obtain sensitive information by leveraging the logging of parameters.
debian
почти 13 лет назад
Piwik before 1.11 accepts input from a POST request instead of a GET r ...