Several Security Vulnerabilities identified on CPG 1.5.34 Several Security Vulnerabilities identified on CPG 1.5.34
 

News:

cpg1.5.48 Security release - upgrade mandatory!
The Coppermine development team is releasing a security update for Coppermine in order to counter a recently discovered vulnerability. It is important that all users who run version cpg1.5.46 or older update to this latest version as soon as possible.
[more]

Main Menu

Several Security Vulnerabilities identified on CPG 1.5.34

Started by zeroresearch, April 15, 2015, 10:31:57 AM

Previous topic - Next topic

0 Members and 1 Guest are viewing this topic.

Print
Go Down Pages1
User actions

zeroresearch

April 15, 2015, 10:31:57 AM
Hi Admin,

Not sure whom should i spoken to about the security vulnerabilities that i have identified. Basically i have identified several security vulnerabilities on the latest CPG and would like to report this as part of responsible security advisory.

Please PM me for those who are responsible for the security side of CPG.

thanks,

Mahendra

gmc

#1
April 15, 2015, 03:20:41 PM
PM sent...
I will provide details to the Dev Team when received.

Greg
Thanks!
Greg
My Coppermine Gallery
Need a web hosting account? See my gallery for an offer for CPG Forum users.
Send me money

gmc

#2
April 15, 2015, 05:26:16 PM
Doc received and forwarded to Dev Team to review/address.
Thank you for your report!
Greg
Thanks!
Greg
My Coppermine Gallery
Need a web hosting account? See my gallery for an offer for CPG Forum users.
Send me money

zeroresearch

#3
April 27, 2015, 05:37:26 AM
hi greg,

any updates from the dev team?

ΑndrĂ©

#4
April 30, 2015, 11:59:32 AM
Sorry for the delay, I've been quite busy the last days/weeks/months. I just posted patch proposals for all identified issues in the dev board. If they fix the issues as expected and don't break any existing features, a new Coppermine version will be released soon.

Thanks for your report!
Print
Go Up Pages1
User actions