2 matches found
CVE-2017-20031 PHPList information disclosure
A vulnerability was found in PHPList 3.2.6. It has been declared as problematic. Affected by this vulnerability is an unknown functionality. The manipulation of the argument sortby with the input password leads to information disclosure. The attack can be launched remotely. The exploit has been...
CVE-2017-20031
CVE-2017-20031 (PHPList 3.2.6) is an information-disclosure vulnerability caused by manipulating the sortby parameter with the input password, allowing remote abuse. The issue affects phplist’s 3.2.6 release and is publicly disclosed; upgrading to version 3.3.1 is the recommended fix. The availab...