| Max CVSS | 7.2 | Min CVSS | 5.8 | Total Count | 2 |
| ID | CVSS | Summary | Last (major) update | Published | |
| CVE-2020-26880 | 7.2 |
Sympa through 6.2.57b.2 allows a local privilege escalation from the sympa user account to full root access by modifying the sympa.conf configuration file (which is owned by sympa) and parsing it through the setuid sympa_newaliases-wrapper executable
|
16-11-2022 - 14:50 | 07-10-2020 - 18:15 | |
| CVE-2018-1000671 | 5.8 |
sympa version 6.2.16 and later contains a CWE-601: URL Redirection to Untrusted Site ('Open Redirect') vulnerability in The "referer" parameter of the wwsympa.fcgi login action. that can result in Open redirection and reflected XSS via data URIs. Thi
|
09-11-2020 - 15:15 | 06-09-2018 - 18:29 |