Lucene search
K

11 matches found

Tenable Nessus
Tenable Nessus
added 2023/10/20 12:0 a.m.30 views

Ubuntu 16.04 ESM / 18.04 ESM / 20.04 ESM : Sympa vulnerabilities (USN-4442-2)

The remote Ubuntu 16.04 ESM / 18.04 ESM / 20.04 ESM host has a package installed that is affected by multiple vulnerabilities as referenced in the USN-4442-2 advisory. USN-4442-1 fixed vulnerabilities in Sympa. This update provides the corresponding updates for Ubuntu 16.04 ESM, Ubuntu 18.04 ESM...

9.8CVSS7.6AI score0.03982EPSS
Exploits1References4
OpenVAS
OpenVAS
added 2022/08/26 12:0 a.m.18 views

Ubuntu: Security Advisory (USN-4442-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.8CVSS7AI score0.03982EPSS
Exploits1References2
Tenable Nessus
Tenable Nessus
added 2020/11/10 12:0 a.m.34 views

Debian DLA-2441-1 : sympa security update

A privilege escalation was discovered in Sympa, a modern mailing list manager. It is fixed when Sympa is used in conjunction with common MTAs such as Exim or Postfix by disabling a setuid executable, although no fix is currently available for all environments such as sendmail. Additionally, an...

7.8CVSS6.5AI score0.03982EPSS
Exploits0References5
OpenVAS
OpenVAS
added 2020/11/10 12:0 a.m.18 views

Debian: Security Advisory (DLA-2441-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.8CVSS7AI score0.03982EPSS
Exploits0References4
Debian
Debian
added 2020/11/09 1:4 p.m.69 views

[SECURITY] [DLA 2441-1] sympa security update

------------------------------------------------------------------------- Debian LTS Advisory DLA-2441-1 [email protected] https://www.debian.org/lts/security/ November 09, 2020 https://wiki.debian.org/LTS - -------------------------------------------------------------------------...

7.8CVSS7.6AI score0.03982EPSS
Exploits0
Ubuntu
Ubuntu
added 2020/07/28 7:9 p.m.78 views

USN-4442-1: Sympa vulnerabilities

Michael Kaczmarczik discovered that Sympa incorrectly handled HTTP GET/POST requests. An attacker could possibly use this issue to insert, edit or obtain sensitive information. CVE-2018-1000550 It was discovered that Sympa incorrectly handled URL parameters. An attacker could possibly use this...

9.8CVSS7.5AI score0.03982EPSS
Exploits1
Debian
Debian
added 2018/09/21 3:12 a.m.37 views

[SECURITY] [DLA 1512-1] sympa security update

Package : sympa Version : 6.1.23dfsg-2+deb8u3 CVE ID : CVE-2018-1000671 Debian Bug : 908165 An Open Redirect vulnerability has been discovered in sympa. The "referer" parameter of the wwsympa.fcgi login action can result in Open redirection and potential Cross Site Scripting via data URIs. This...

6.1CVSS6.3AI score0.03982EPSS
Exploits0
OpenVAS
OpenVAS
added 2018/09/20 12:0 a.m.34 views

Debian: Security Advisory (DLA-1512-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2018 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

6.1CVSS6.6AI score0.03982EPSS
Exploits0References3
UbuntuCve
UbuntuCve
added 2018/09/06 6:29 p.m.24 views

CVE-2018-1000671

sympa version 6.2.16 and later contains a CWE-601: URL Redirection to Untrusted Site 'Open Redirect' vulnerability in The "referer" parameter of the wwsympa.fcgi login action. that can result in Open redirection and reflected XSS via data URIs. This attack appear to be exploitable via Victim's...

6.1CVSS6.6AI score0.03982EPSS
Exploits0References4
OSV
OSV
added 2018/09/06 6:29 p.m.3 views

DEBIAN-CVE-2018-1000671

sympa version 6.2.16 and later contains a CWE-601: URL Redirection to Untrusted Site 'Open Redirect' vulnerability in The "referer" parameter of the wwsympa.fcgi login action. that can result in Open redirection and reflected XSS via data URIs. This attack appear to be exploitable via Victim's...

6.1CVSS6.1AI score0.03982EPSS
Exploits0References1
CVE
CVE
added 2018/09/06 6:0 p.m.88 views

CVE-2018-1000671

CVE-2018-1000671 (Sympa) affects Sympa 6.2.16 and later. The issue is a CWE-601 Open Redirect in the referer parameter of the wwsympa.fcgi login action, which can lead to open redirection and reflected XSS via data URIs. Impact described in connected documents includes potential for an attacker t...

6.1CVSS6AI score0.03982EPSS
Exploits0References4Affected Software1
Rows per page
Query Builder