← back
CVE-2011-0401

CVE-2011-0401

EPSS 1.7%
Piwik before 1.1 does not properly limit the number of files stored under tmp/sessions/, which might allow remote attackers to cause a denial of service (inode consumption) by establishing many sessions.
Affected products
n/a · n/a

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
http://dev.piwik.org/trac/ticket/1279#comment:13http://dev.piwik.org/trac/ticket/1910http://osvdb.org/70381http://piwik.org/blog/2011/01/piwik-1-1-2/https://exchange.xforce.ibmcloud.com/vulnerabilities/64638http://www.securityfocus.com/bid/45787