{"url":"http://public2.vulnerablecode.io/api/packages/98225?format=json","purl":"pkg:composer/piwik/piwik@2.9.0-rc2","type":"composer","namespace":"piwik","name":"piwik","version":"2.9.0-rc2","qualifiers":{},"subpath":"","is_vulnerable":true,"next_non_vulnerable_version":"2.16.1","latest_non_vulnerable_version":"2.16.1","affected_by_vulnerabilities":[{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/11058?format=json","vulnerability_id":"VCID-4y2q-2re4-v3hx","summary":"PHP Object Injection Vulnerability\nThere's a PHP Object Injection vulnerability that can be triggered through the `saveLayout()` method defined into the `/plugins/Dashboard/Controller.php` script. Since Piwik is not using \"utf8mb4\" collations for its database, this can be exploited in combination with a MySQL UTF8 truncation issue in order to corrupt the session array, allowing unauthenticated attackers to inject arbitrary PHP objects into the application scope and carry out Server-Side Request Forgery (SSRF) attacks, delete arbitrary files, execute arbitrary PHP code, and possibly other attacks.","references":[{"reference_url":"http://karmainsecurity.com/KIS-2016-13","reference_id":"","reference_type":"","scores":[],"url":"http://karmainsecurity.com/KIS-2016-13"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/51933?format=json","purl":"pkg:composer/piwik/piwik@2.16.1","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:composer/piwik/piwik@2.16.1"}],"aliases":["GMS-2016-85"],"risk_score":null,"exploitability":"0.5","weighted_severity":"0.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-4y2q-2re4-v3hx"}],"fixing_vulnerabilities":[],"risk_score":null,"resource_url":"http://public2.vulnerablecode.io/packages/pkg:composer/piwik/piwik@2.9.0-rc2"}