Download Netsparker
Pricing
Blog
Contact
Netsparker

Piwik Web Analytics Reports Detected on Target Web Application

Netsparker detected Piwik, a web-based statistics software.

This information can help an attacker gain a greater understanding of the systems in use and potentially to develop further attacks.

Impact

An attacker can search for specific security vulnerabilities for the version of Piwik identified. More importantly, Piwik discloses too much information about hidden pages (config, administration etc.).

Remedy

Configure your web server to prevent information leakage from the Piwik directory by implementing access control mechanisms to stop public access. 


Go back to the Complete list of Vulnerability Checks.