Meet the Matomo Team

Matomo (Piwik) is an open source collaborative effort with many people participating in the project to make Matomo what it is today. We recently added a Matomo Team page that includes additional information on others that have contributed their invaluable …

Read More

Matomo IRC meetup #2

After our first successful IRC meetup, here is the schedule for Matomo (Piwik) IRC meetup #2 – Date: Thurs March 18th, 1pm UTC – Duration: 30min – IRC #piwik channel Agenda: Matomo 0.5.5 follow up(which should be out by then) …

Read More

Softaculous now supports Matomo

We are thrilled to announce that Matomo (Piwik) is now officially supported by Softaculous. The decision to have Matomo added to the Softaculous repository of scripts is very much in line with our vision to make Matomo the best Open …

Read More

Matomo IRC meetup #1

We are trying to improve communication across the Matomo (Piwik) community of developers and users. Robert, the new Marketing & Community coordinator, suggested that we all meet in a synchronous way on regular basis, to catch up and discuss the …

Read More

Matomo Response to Zend Framework Security Advisory ZF2010-01

Matomo (Piwik) 0.5.4 (released Dec. 18, 2009) and earlier versions are not affected by this security advisory to Zend_Log (disclosed Jan. 11, 2010) because Matomo uses UTF-8. Furthermore, Matomo is not affected by security advisories ZF2010-02 through ZF2010-06 because Matomo …

Read More

Professional Security Audit

In the past, whenever we received security related questions and suggestions for Matomo (Piwik), sent to our security@piwik.org address, we quickly reacted and released a fix in a new Matomo release. However, going forward, we want to be proactive, so …

Read More

Matomo 0.5, response to “Shocking News in PHP Exploitation”

The Matomo (Piwik) project acknowledges its exposure to the cookie exploit vulnerability described in Stefan Esser’s presentation, “Shocking News in PHP Exploitation“. The potential security vulnerability exists in all versions of Matomo prior to version 0.5. While no exploit code …

Read More

Matomo 0.4.4, response to Secunia Advisory SA37078

The Matomo (Piwik) project confirms that a potential vulnerability exists due to a file included in a third-party library. The vulnerability is exploitable whether or not the web site has the PHP configuration directive register_globals=On. The list of affected Matomo …

Read More