Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

8 matches found

CNVD
CNVDadded 2020/02/25 12:0 a.m.3 views

Sympa has an unspecified vulnerability

Sympa is an extensible and highly customizable mailing list software. The software provides multiple templates, custom authentication backends and authentication scripts, and support for various mailing list backends LDAP, SQL, text, list or others. A security vulnerability exists in Sympa versio...

7.5CVSS7.1AI score0.02124EPSS
Exploits0References1
UbuntuCve
UbuntuCveadded 2020/02/24 6:15 p.m.17 views

CVE-2020-9369

Sympa 6.2.38 through 6.2.52 allows remote attackers to cause a denial of service disk consumption from temporary files, and a flood of notifications to listmasters via a series of requests with malformed parameters...

7.5CVSS6.9AI score0.02124EPSS
Exploits0References3
CNVD
CNVDadded 2015/01/23 12:0 a.m.3 views

Sympa File Disclosure Vulnerability

Sympa is an extensible and highly customizable mailing list software. Sympa suffers from a file disclosure vulnerability due to the program failing to adequately filter user-supplied input. An attacker can exploit this vulnerability to access sensitive information stored in arbitrary files...

5CVSS6.5AI score0.00585EPSS
Exploits0References1
OSV
OSVadded 2012/05/31 5:55 p.m.3 views

CVE-2012-2352

The archive management arcmanage page in wwsympa/wwsympa.fcgi.in in Sympa before 6.1.11 does not check permissions, which allows remote attackers to list, read, and delete arbitrary list archives via vectors related to the 1 doarcmanage, 2 doarcdownload, or 3 doarcdelete functions...

6.5AI score
Exploits0References10
OSV
OSVadded 2008/10/07 9:11 p.m.6 views

CVE-2008-4476

sympa.pl in sympa 5.3.4 allows local users to overwrite arbitrary files via a symlink attack on the /tmp/sympaaliases.$$ temporary file. NOTE: wwsympa.fcgi was also reported, but the issue occurred in a dead function, so it is not a vulnerability...

6.1AI score
Exploits0References10
OSV
OSVadded 2008/04/02 5:44 p.m.6 views

CVE-2008-1648

Sympa before 5.4 allows remote attackers to cause a denial of service daemon crash via an e-mail message with a malformed value of the Content-Type header and unspecified other headers. NOTE: some of these details are obtained from third party information...

6.6AI score
Exploits0References9
securityvulns
securityvulnsadded 2004/08/22 12:0 a.m.25 views

Cross Site Scripting Vulnerability in Sympa

--------------------------------------------------------------------------- Cross Site Scripting Vulnerability in Sympa --------------------------------------------------------------------------- Author: Joxean Koret Date: 2004 Location: Basque Country...

6.5AI score
Exploits0
OSV
OSVadded 2004/08/21 4:0 a.m.7 views

CVE-2004-1735

Cross-site scripting XSS vulnerability in the create list option in Sympa 4.1.x and earlier allows remote authenticated users to inject arbitrary web script or HTML via the description field...

5.3AI score
Exploits0References5
Rows per page
Query Builder