Piwik Web Analytics Software Gets Security Update
The update addresses cross-site scripting and click-jacking vulnerabilities.
Version 1.7 of the open source Piwik Web analytics suite was recently released.
"The latest version ... includes a new option to force it to use SSL, and addresses cross-site scripting (XSS) and click-jacking vulnerabilities -- at the time of writing, the project's security page has yet to be updated with details of these issues," The H Security reports.
Go to "Piwik 1.7 adds new reports, improves security" to read the details.
For regular security news updates, follow eSecurityPlanet on Twitter: @eSecurityP.