Several Security Vulnerabilities identified on CPG 1.5.34 Several Security Vulnerabilities identified on CPG 1.5.34
 

News:

CPG Release 1.6.26
Correct PHP8.2 issues with user and language managers.
Additional fixes for PHP 8.2
Correct PHP8 error with SMF 2.0 bridge.
Correct IPTC supplimental category parsing.
Download and info HERE

Main Menu

Several Security Vulnerabilities identified on CPG 1.5.34

Started by zeroresearch, April 15, 2015, 10:31:57 AM

Previous topic - Next topic

0 Members and 1 Guest are viewing this topic.

Print
Go Down Pages1
User actions

zeroresearch

April 15, 2015, 10:31:57 AM
Hi Admin,

Not sure whom should i spoken to about the security vulnerabilities that i have identified. Basically i have identified several security vulnerabilities on the latest CPG and would like to report this as part of responsible security advisory.

Please PM me for those who are responsible for the security side of CPG.

thanks,

Mahendra

gmc

#1
April 15, 2015, 03:20:41 PM
PM sent...
I will provide details to the Dev Team when received.

Greg
Thanks!
Greg
My Coppermine Gallery
Need a web hosting account? See my gallery for an offer for CPG Forum users.
Send me money

gmc

#2
April 15, 2015, 05:26:16 PM
Doc received and forwarded to Dev Team to review/address.
Thank you for your report!
Greg
Thanks!
Greg
My Coppermine Gallery
Need a web hosting account? See my gallery for an offer for CPG Forum users.
Send me money

zeroresearch

#3
April 27, 2015, 05:37:26 AM
hi greg,

any updates from the dev team?

ΑndrĂ©

#4
April 30, 2015, 11:59:32 AM
Sorry for the delay, I've been quite busy the last days/weeks/months. I just posted patch proposals for all identified issues in the dev board. If they fix the issues as expected and don't break any existing features, a new Coppermine version will be released soon.

Thanks for your report!
Print
Go Up Pages1
User actions