PivotX 2.3.10: Session Fixation, Reflected XSS, Code Execution

  • Vulnerability: Session Fixation, Reflected XSS, Code Execution
  • Affected Software: PivotX
  • Affected Version: 2.3.10 (probably also prior versions)
  • Patched Version: 2.3.11
  • Risk: Medium-High
  • Vendor Contacted: 2015-05-27
  • Vendor Fix: 2015-06-21
  • Public Disclosure: 2015-06-27
Continue