CVE-2015-1306

EPSS 0.58%

sympa - security update

發布日:2015/1/22修改日:2026/4/28

描述

The newsletter posting area in the web interface in Sympa 6.0.x before 6.0.10 and 6.1.x before 6.1.24 allows remote attackers to read arbitrary files via unspecified vectors.

受影響套件(3)

Debian/sympafrom 0, < 6.1.23~dfsg-2
Debian/sympafrom 0, < 6.0.1+dfsg-4+squeeze3
Debian/sympafrom 0, < 6.1.11~dfsg-5+deb7u2

參考連結(1)

ADVISORYhttps://security-tracker.debian.org/tracker/CVE-2015-1306