CVE-2010-2786

Description

Directory traversal vulnerability in Piwik 0.6 through 0.6.3 allows remote attackers to include arbitrary local files and possibly have unspecified other impact via directory traversal sequences in a crafted data-renderer request.

References

https://exchange.xforce.ibmcloud.com/vulnerabilities/60808

http://www.vupen.com/english/advisories/2010/1971

http://www.securityfocus.com/bid/42031

http://www.osvdb.org/66759

http://secunia.com/advisories/40703

http://piwik.org/changelog/

http://piwik.org/blog/2010/07/piwik-0-6-4-security-advisory/

http://marc.info/?l=oss-security&m=128041221832498&w=2

http://marc.info/?l=oss-security&m=128032989120346&w=2

Details

Source: Mitre, NVD

Risk Information

CVSS v2

CVSS v3