Arbitrary File Read Vulnerability in Sympa Newsletter Posting Area

Arbitrary File Read Vulnerability in Sympa Newsletter Posting Area

CVE-2015-1306 · MEDIUM Severity

AV:N/AC:L/AU:N/C:P/I:N/A:N

The newsletter posting area in the web interface in Sympa 6.0.x before 6.0.10 and 6.1.x before 6.1.24 allows remote attackers to read arbitrary files via unspecified vectors.

Learn more about our Web App Pen Testing.