Lucene search
K

5 matches found

Mageia
Mageia
added 2015/02/26 8:26 a.m.29 views

Updated sympa packages fix CVE-2015-1306

Updated sympa packages fix security vulnerability: A vulnerability have been discovered in Sympa web interface that allows access to files on the server filesystem. This breach allows to send to a list or a user any file readable by the Sympa user, located on the server filesystem, using the Symp...

6.4AI score
Exploits0References3
Debian
Debian
added 2015/02/07 10:54 a.m.23 views

[SECURITY] [DLA 148-1] sympa security update

Package : sympa Version : 6.0.1+dfsg-4+squeeze3 CVE ID : CVE-2015-1306 A vulnerability has been discovered in the web interface of sympa, a mailing list manager. An attacker could take advantage of this flaw in the newsletter posting area, which allows sending to a list, or to oneself, any file...

5CVSS5.8AI score0.02436EPSS
Exploits0
OSV
OSV
added 2015/02/07 12:0 a.m.14 views

DLA-148-1 sympa - security update

Bulletin has no description...

5CVSS6.3AI score0.02436EPSS
Exploits0
NVD
NVD
added 2015/01/22 3:59 p.m.7 views

CVE-2015-1306

The newsletter posting area in the web interface in Sympa 6.0.x before 6.0.10 and 6.1.x before 6.1.24 allows remote attackers to read arbitrary files via unspecified vectors...

5CVSS6.5AI score0.02436EPSS
Exploits0References8
Prion
Prion
added 2015/01/22 3:59 p.m.15 views

Design/Logic Flaw

The newsletter posting area in the web interface in Sympa 6.0.x before 6.0.10 and 6.1.x before 6.1.24 allows remote attackers to read arbitrary files via unspecified vectors...

5CVSS7.1AI score0.02436EPSS
Exploits0References8Affected Software1
Rows per page
Query Builder