330 matches found
[SECURITY] Fedora 31 Update: sympa-6.2.54-1.fc31
Sympa is scalable and highly customizable mailing list manager. It can cope with big lists 200,000 subscribers and comes with a complete user and admin Web interface. It is internationalized, and supports the us, fr, de, es, it, fi, and chinese locales. A scripting language allows you to extend t...
Sympa has an unspecified vulnerability
Sympa is an extensible and highly customizable mailing list software. The software provides multiple templates, custom authentication backends and authentication scripts, and support for various mailing list backends LDAP, SQL, text, list or others. A security vulnerability exists in Sympa versio...
Sympa 6.2.38 <= 6.2.52 DoS Vulnerability
Sympa is prone to a denial of service DoS vulnerability. SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:sympa:sympa"; if...
CVE-2020-9369
Sympa 6.2.38 through 6.2.52 allows remote attackers to cause a denial of service disk consumption from temporary files, and a flood of notifications to listmasters via a series of requests with malformed parameters...
CVE-2020-9369
Sympa 6.2.38 through 6.2.52 allows remote attackers to cause a denial of service disk consumption from temporary files, and a flood of notifications to listmasters via a series of requests with malformed parameters...
DEBIAN-CVE-2020-9369
Sympa 6.2.38 through 6.2.52 allows remote attackers to cause a denial of service disk consumption from temporary files, and a flood of notifications to listmasters via a series of requests with malformed parameters...
Code injection
Sympa 6.2.38 through 6.2.52 allows remote attackers to cause a denial of service disk consumption from temporary files, and a flood of notifications to listmasters via a series of requests with malformed parameters...
CVE-2020-9369
Sympa 6.2.38 through 6.2.52 allows remote attackers to cause a denial of service disk consumption from temporary files, and a flood of notifications to listmasters via a series of requests with malformed parameters...
UBUNTU-CVE-2020-9369
Sympa 6.2.38 through 6.2.52 allows remote attackers to cause a denial of service disk consumption from temporary files, and a flood of notifications to listmasters via a series of requests with malformed parameters...
CVE-2020-9369
Sympa (mailing list manager) is affected by CVE-2020-9369. The vulnerability exists in 6.2.38 through 6.2.52 and allows remote attackers to cause a denial of service by sending requests with malformed parameters, triggering disk consumption via temporary files and a flood of notifications to list...
CVE-2020-9369
Sympa 6.2.38 through 6.2.52 allows remote attackers to cause a denial of service disk consumption from temporary files, and a flood of notifications to listmasters via a series of requests with malformed parameters...
CVE-2020-9369
Sympa 6.2.38 through 6.2.52 allows remote attackers to cause a denial of service disk consumption from temporary files, and a flood of notifications to listmasters via a series of requests with malformed parameters...
sympa -- Denial of service caused by malformed CSRF token
Javier Moreno discovered a vulnerability in Sympa web interface that can cause denial of service DoS attack. By submitting requests with malformed parameters, this flaw allows to create junk files in Sympa's directory for temporary files. And particularly by tampering token to prevent CSRF, it...
MGASA-2019-0263 Updated sympa packages fix security vulnerability
Updated sympa packages fix security vulnerability: Michael Kaczmarczik discovered a vulnerability in the web interface template editing function of Sympa, a mailing list manager. Owner and listmasters could use this flaw to create or modify arbitrary files in the server with privileges of sympa...
Updated sympa packages fix security vulnerability
Updated sympa packages fix security vulnerability: Michael Kaczmarczik discovered a vulnerability in the web interface template editing function of Sympa, a mailing list manager. Owner and listmasters could use this flaw to create or modify arbitrary files in the server with privileges of sympa...
PT-2019-5774 · Debian · Sympa
Name of the Vulnerable Software and Affected Versions: Debian Sympa package versions prior to 6.2.40dfsg-7 Description: The issue is related to the debian/sympa.postinst component of the Sympa package, which sets incorrect permissions for the sympa newaliases-wrapper. This could allow a remote...
DLA-1512-1 sympa - security update
Bulletin has no description...
Debian DLA-1512-1 : sympa security update
An Open Redirect vulnerability has been discovered in sympa. The 'referer' parameter of the wwsympa.fcgi login action can result in Open redirection and potential Cross Site Scripting via data URIs. This attack appear to be exploitable via Victim browser opening a crafted URL supplied by the...
Debian: Security Advisory (DLA-1512-1)
The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2018 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Sympa Open Redirect Vulnerability
Sympa is an extensible and highly customizable mailing list software. The software provides multiple templates, custom authentication backends and authentication scripts, and support for various mailing list backends LDAP, SQL, text, list or others. An open redirect vulnerability exists in the...