CVE-2011-0399

EUVD-2011-0425
Piwik before 1.1 does not prevent the rendering of the login form inside a frame in a third-party HTML document, which makes it easier for remote attackers to conduct clickjacking attacks via a crafted web site.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTPrimary
4.3 UNKNOWN
NETWORK
MEDIUM
AV:N/AC:M/Au:N/C:N/I:P/A:N
Base Score
CVSS 3.x
EPSS Score
Percentile: 59%
Affected Products (NVD)
VendorProductVersion
matomomatomo
𝑥
≤ 1.0
matomomatomo
0.1
matomomatomo
0.1.1
matomomatomo
0.1.2
matomomatomo
0.1.3
matomomatomo
0.1.4
matomomatomo
0.1.5
matomomatomo
0.1.6
matomomatomo
0.1.7
matomomatomo
0.1.8
matomomatomo
0.1.9
matomomatomo
0.1.10
matomomatomo
0.2.1
matomomatomo
0.2.2
matomomatomo
0.2.3
matomomatomo
0.2.4
matomomatomo
0.2.5
matomomatomo
0.2.6
matomomatomo
0.2.7
matomomatomo
0.2.8
matomomatomo
0.2.9
matomomatomo
0.2.10
matomomatomo
0.2.11
matomomatomo
0.2.12
matomomatomo
0.2.13
matomomatomo
0.2.14
matomomatomo
0.2.16
matomomatomo
0.2.17
matomomatomo
0.2.18
matomomatomo
0.2.19
matomomatomo
0.2.20
matomomatomo
0.2.22
matomomatomo
0.2.23
matomomatomo
0.2.24
matomomatomo
0.2.25
matomomatomo
0.2.26
matomomatomo
0.2.27
matomomatomo
0.2.28
matomomatomo
0.2.29
matomomatomo
0.2.30
matomomatomo
0.2.31
matomomatomo
0.2.32
matomomatomo
0.2.33
matomomatomo
0.2.34
matomomatomo
0.4:rc1
matomomatomo
0.4:rc2
matomomatomo
0.4:rc3
matomomatomo
0.4.1:rc1
matomomatomo
0.4.4
matomomatomo
0.4.5
matomomatomo
0.5
matomomatomo
0.5.1
matomomatomo
0.5.2
matomomatomo
0.5.3
matomomatomo
0.5.4
matomomatomo
0.5.5
matomomatomo
0.6
matomomatomo
0.6.1
matomomatomo
0.6.2
matomomatomo
0.6.3
matomomatomo
0.6.3:rc1
matomomatomo
0.6.3:rc2
matomomatomo
0.6.4
matomomatomo
0.7
matomomatomo
0.8
matomomatomo
0.9
matomomatomo
0.9.9
𝑥
= Vulnerable software versions
References
http://dev.piwik.org/trac/ticket/1679
http://osvdb.org/70383
http://piwik.org/blog/2011/01/piwik-1-1-2/
http://www.securityfocus.com/bid/45787
https://exchange.xforce.ibmcloud.com/vulnerabilities/64640
http://dev.piwik.org/trac/ticket/1679
http://osvdb.org/70383
http://piwik.org/blog/2011/01/piwik-1-1-2/
http://www.securityfocus.com/bid/45787
https://exchange.xforce.ibmcloud.com/vulnerabilities/64640