Version 1.7 of the open source Piwik Web analytics suite was recently released.
"The latest version ... includes a new option to force it to use SSL, and addresses cross-site scripting (XSS) and click-jacking vulnerabilities -- at the time of writing, the project's security page has yet to be updated with details of these issues," The H Security reports.
Go to "Piwik 1.7 adds new reports, improves security" to read the details.https://o1.qnsr.com/log/p.gif?;n=203;c=204660766;s=9477;x=7936;f=201812281312070;u=j;z=TIMESTAMP;a=20392931;e=i
For regular security news updates, follow eSecurityPlanet on Twitter: @eSecurityP.