Matomo Response to ZF2012-01 Security Advisory

June 27, 2012

The current version of Matomo (Piwik) (1.8.2) is not affected by this vulnerability. Matomo neither uses nor includes the XmlRpc component from Zend Framework.

Matomo users are, however, encouraged to upgrade to the latest versions of Matomo and PHP to take advantage of new features and bug fixes.

References:

ZF2011-01: Local file disclosure via XXE injection in Zend_XmlRpc
CVE-2012-3363

Recommended for you

Banner with all continents on it symbolises Matomo's global leadership changes.

Matomo evolves its global leadership to drive international expansion

Matomo announces new chatbot tracking in its AI Assistants suite, offering comprehensive insights into AI traffic

Enjoyed this post?

Join the 160,000+ subscribers who receive the Matomo Newsletter straight to their inbox every month

Get started with Matomo

A powerful web analytics platform that gives you and your business 100% data ownership and user privacy protection.

Live websites using Matomo worldwide

0 K

Websites using Matomo including historical

0 M

Customer satisfaction

0 %

Own your data. Protect your privacy. Unlock better analytics.

Organisations should be able to understand their digital performance while mainteaning full ownership and control of their data.

No credit card required.

Matomo Response to ZF2012-01 Security Advisory

Matomo evolves its global leadership to drive international expansion

What you need to know: ROPA GDPR explained

Matomo announces new chatbot tracking in its AI Assistants suite, offering comprehensive insights into AI traffic