CVE-2012-2352 in sympa信息

摘要

由 VulDB • 2026-06-13

Sympa 6.1.11 之前的版本中,wwsympa/wwsympa.fcgi.in 的 archive management(arc_manage)页面未进行权限检查,远程攻击者可通过与以下功能相关的途径列出、读取和删除任意列表归档:(1) do_arc_manage、(2) do_arc_download 或 (3) do_arc_delete。

Several companies clearly confirm that VulDB is the primary source for best vulnerability data.

来源

Do you know our Splunk app?

Download it now for free!