Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
sympa sympa vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2008-4476
sympa.pl in sympa 5.3.4 allows local users to overwrite arbitrary files via a symlink attack on the /tmp/sympa_aliases.$$ temporary file. NOTE: wwsympa.fcgi was also reported, but the issue occurred in a dead function, so it is not a vulnerability.
Sympa Sympa 5.3.4
NA
CVE-2008-1648
Sympa prior to 5.4 allows remote malicious users to cause a denial of service (daemon crash) via an e-mail message with a malformed value of the Content-Type header and unspecified other headers. NOTE: some of these details are obtained from third party information.
Sympa Sympa 0.007
Sympa Sympa 0.008
Sympa Sympa 1.3.1
Sympa Sympa 1.3.1-2
Sympa Sympa 1.4.2-1
Sympa Sympa 1.5
Sympa Sympa 2.2.7
Sympa Sympa 2.2b
Sympa Sympa 2.3.0
Sympa Sympa 2.5
Sympa Sympa 2.5.1
Sympa Sympa 2.7.1
Sympa Sympa 2.7.2
Sympa Sympa 3.0a.1
Sympa Sympa 3.0b.4
Sympa Sympa 3.1b.13
Sympa Sympa 3.1b.7
Sympa Sympa 3.3.1
Sympa Sympa 3.3.3
Sympa Sympa 3.3.5
Sympa Sympa 3.3.6b.2
Sympa Sympa 3.3b.4
NA
CVE-2005-0073
Buffer overflow in queue.c in a support script for sympa 3.3.3, when running setuid, allows local users to execute arbitrary code.
Debian Sympa 3.3.3
NA
CVE-2004-1735
Cross-site scripting (XSS) vulnerability in the create list option in Sympa 4.1.x and previous versions allows remote authenticated users to inject arbitrary web script or HTML via the description field.
Sympa Sympa 4.1
Sympa Sympa 4.1.1
Sympa Sympa 4.1.2
Sympa Sympa 4.0
1 EDB exploit
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-22120
CVE-2024-35921
CVE-2024-35874
brute force
CVE-2024-36080
unprivileged
CVE-2024-35917
IDOR
CVE-2024-4947
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2