forum.coppermine-gallery.net

Support => cpg1.5.x Support => cpg1.5 miscellaneous => Topic started by: MarpleMW on October 26, 2020, 05:54:45 pm

Title: Security Vulnerability Notification | OBB-1444528
Post by: MarpleMW on October 26, 2020, 05:54:45 pm

I have received notification of a security vulnerability from OpenBugBounty for my site running Coppermine 1.5.48, which I understand is the latest version.

How can I convey the details of this vulnerability to the developers please?

I'm not sure I should post all the details here.

Thanks in anticipation.

Title: Re: Security Vulnerability Notification | OBB-1444528
Post by: phill104 on October 27, 2020, 10:45:44 pm

Thanks for the heads up. If you could PM details to me I shall raise it in our development forum for investigation.

Please be aware, we also have version 1.6.x available now if you would like to use that. It may also be affected, we will know when details are supplied.

Title: Re: Security Vulnerability Notification | OBB-1444528
Post by: MarpleMW on November 23, 2020, 06:36:24 am

Quote from: Phill Luckhurst on October 27, 2020, 10:45:44 pm

Thanks for the heads up. If you could PM details to me I shall raise it in our development forum for investigation.

Please be aware, we also have version 1.6.x available now if you would like to use that. It may also be affected, we will know when details are supplied.

Apologies for the delay, I was expecting to be notified if there was a reply to this. I will PM now.

Title: Re: Security Vulnerability Notification | OBB-1444528
Post by: phill104 on December 06, 2020, 12:35:59 am

Thank you for your follow up. I have received your email and have raised the problem.