Back to search
CVE-2018-1000550
Published: Jun 26, 2018
Modified: Aug 5, 2024
PUBLISHED
Description
The Sympa Community Sympa version prior to version 6.2.32 contains a Directory Traversal vulnerability in wwsympa.fcgi template editing function that can result in Possibility to create or modify files on the server filesystem. This attack appear to be exploitable via HTTP GET/POST request. This vulnerability appears to have been fixed in 6.2.32.
| Vendor | Product | Versions |
|---|---|---|
n/a | n/a | affected n/a |
References
https://sympa-community.github.io/security/2018-001.html
x_refsource_MISC
DSA-4285
vendor-advisory
x_refsource_DEBIAN
[debian-lts-announce] 20180724 [SECURITY] [DLA 1441-1] sympa security update
mailing-list
x_refsource_MLIST
USN-4442-1
vendor-advisory
x_refsource_UBUNTU
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now