messagepartthemes/default/defaultrenderer.cpp in messagelib in KDE Applications prior to 18.12.0 does not properly restrict the handling of an http-equiv="REFRESH" value.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
kde kde applications |