Several Security Vulnerabilities identified on CPG 1.5.34 Several Security Vulnerabilities identified on CPG 1.5.34
 

News:

cpg1.5.48 Security release - upgrade mandatory!
The Coppermine development team is releasing a security update for Coppermine in order to counter a recently discovered vulnerability. It is important that all users who run version cpg1.5.46 or older update to this latest version as soon as possible.
[more]

Main Menu

Several Security Vulnerabilities identified on CPG 1.5.34

Started by zeroresearch, April 15, 2015, 10:31:57 AM

Previous topic - Next topic

0 Members and 1 Guest are viewing this topic.

zeroresearch

Hi Admin,

Not sure whom should i spoken to about the security vulnerabilities that i have identified. Basically i have identified several security vulnerabilities on the latest CPG and would like to report this as part of responsible security advisory.

Please PM me for those who are responsible for the security side of CPG.

thanks,

Mahendra

gmc

PM sent...
I will provide details to the Dev Team when received.

Greg
Thanks!
Greg
My Coppermine Gallery
Need a web hosting account? See my gallery for an offer for CPG Forum users.
Send me money

gmc

Doc received and forwarded to Dev Team to review/address.
Thank you for your report!
Greg
Thanks!
Greg
My Coppermine Gallery
Need a web hosting account? See my gallery for an offer for CPG Forum users.
Send me money

zeroresearch


ΑndrĂ©

Sorry for the delay, I've been quite busy the last days/weeks/months. I just posted patch proposals for all identified issues in the dev board. If they fix the issues as expected and don't break any existing features, a new Coppermine version will be released soon.

Thanks for your report!