VDB

GCVE-110-MAGEIA-2015-85

GCVE-110-MAGEIA-2015-85
Advisory Published
Vulnetix · Advisory published February 26, 2015
Updated sympa packages fix security vulnerability: A vulnerability have been discovered in Sympa web interface that allows access to files on the server filesystem. This breach allows to send to a list or a user any file readable by the Sympa user, located on the server filesystem, using the Sympa web interface newsletter posting area (CVE-2015-1306).

Affected Products

VendorProductVersionsPlatforms
Mageiagramps0 (affected), 4.1.3-1.mga5 (unaffected)
Mageiasympa0 (affected), 6.1.17-3.3.mga4 (unaffected), 0 (affected), 6.1.17-3.3.mga4 (unaffected)

Explore Further

Investigate this vulnerability in the interactive console or download the raw GCVE record.

$ Console Community · 100/wk Open console ›