The open source Web analytics tool Piwik has been updated to Version 0.5, fixing a cookie-related security hole.

“Once installed on a Web server, Piwik provides detailed reports on Web site visitors, including search engines and keywords used, language and the most popular pages,” according to The H Security.

“The security problem is caused by the unserialize() PHP function used when reading user cookies and converting the data they contain into PHP data,” the article states. “Attackers are reportedly able to upload files onto a server or execute arbitrary code – and gain control of a system – via specially crafted cookies.”

Click here to read the article at The H Security.