Advanced search  

News:

cpg1.5.48 Security release - upgrade mandatory!
The Coppermine development team is releasing a security update for Coppermine in order to counter a recently discovered vulnerability. It is important that all users who run version cpg1.5.46 or older update to this latest version as soon as possible.
[more]

Pages: [1]   Go Down

Author Topic: Several Security Vulnerabilities identified on CPG 1.5.34  (Read 2697 times)

0 Members and 1 Guest are viewing this topic.

zeroresearch

  • Coppermine newbie
  • Offline Offline
  • Posts: 3
Several Security Vulnerabilities identified on CPG 1.5.34
« on: April 15, 2015, 10:31:57 am »
Hi Admin,

Not sure whom should i spoken to about the security vulnerabilities that i have identified. Basically i have identified several security vulnerabilities on the latest CPG and would like to report this as part of responsible security advisory.

Please PM me for those who are responsible for the security side of CPG.

thanks,

Mahendra
Logged

gmc

  • Dev Team member
  • Coppermine addict
  • ****
  • Country: us
  • Offline Offline
  • Gender: Male
  • Posts: 785
    • GMC Design Photo Gallery
Re: Several Security Vulnerabilities identified on CPG 1.5.34
« Reply #1 on: April 15, 2015, 03:20:41 pm »
PM sent...
I will provide details to the Dev Team when received.

Greg
Logged
Thanks!
Greg
My Coppermine Gallery
Need a web hosting account? See my gallery for an offer for CPG Forum users.
Send me money

gmc

  • Dev Team member
  • Coppermine addict
  • ****
  • Country: us
  • Offline Offline
  • Gender: Male
  • Posts: 785
    • GMC Design Photo Gallery
Re: Several Security Vulnerabilities identified on CPG 1.5.34
« Reply #2 on: April 15, 2015, 05:26:16 pm »
Doc received and forwarded to Dev Team to review/address.
Thank you for your report!
Greg
Logged
Thanks!
Greg
My Coppermine Gallery
Need a web hosting account? See my gallery for an offer for CPG Forum users.
Send me money

zeroresearch

  • Coppermine newbie
  • Offline Offline
  • Posts: 3
Re: Several Security Vulnerabilities identified on CPG 1.5.34
« Reply #3 on: April 27, 2015, 05:37:26 am »
hi greg,

any updates from the dev team?

Logged

Αndré

  • Administrator
  • Coppermine addict
  • *****
  • Country: de
  • Offline Offline
  • Gender: Male
  • Posts: 15764
Re: Several Security Vulnerabilities identified on CPG 1.5.34
« Reply #4 on: April 30, 2015, 11:59:32 am »
Sorry for the delay, I've been quite busy the last days/weeks/months. I just posted patch proposals for all identified issues in the dev board. If they fix the issues as expected and don't break any existing features, a new Coppermine version will be released soon.

Thanks for your report!
Logged
Pages: [1]   Go Up
« previous next »
 

Page created in 0.024 seconds with 19 queries.