forum.coppermine-gallery.net

Support => cpg1.5.x Support => cpg1.5 miscellaneous => Topic started by: zeroresearch on April 15, 2015, 10:31:57 am

Title: Several Security Vulnerabilities identified on CPG 1.5.34
Post by: zeroresearch on April 15, 2015, 10:31:57 am

Hi Admin,

Not sure whom should i spoken to about the security vulnerabilities that i have identified. Basically i have identified several security vulnerabilities on the latest CPG and would like to report this as part of responsible security advisory.

Please PM me for those who are responsible for the security side of CPG.

thanks,

Mahendra

Title: Re: Several Security Vulnerabilities identified on CPG 1.5.34
Post by: gmc on April 15, 2015, 03:20:41 pm

PM sent...
I will provide details to the Dev Team when received.

Greg

Title: Re: Several Security Vulnerabilities identified on CPG 1.5.34
Post by: gmc on April 15, 2015, 05:26:16 pm

Doc received and forwarded to Dev Team to review/address.
Thank you for your report!
Greg

Title: Re: Several Security Vulnerabilities identified on CPG 1.5.34
Post by: zeroresearch on April 27, 2015, 05:37:26 am

hi greg,

any updates from the dev team?

Title: Re: Several Security Vulnerabilities identified on CPG 1.5.34
Post by: Αndré on April 30, 2015, 11:59:32 am

Sorry for the delay, I've been quite busy the last days/weeks/months. I just posted patch proposals for all identified issues in the dev board. If they fix the issues as expected and don't break any existing features, a new Coppermine version will be released soon.

Thanks for your report!