Security advisories
This page references the security advisories regarding Sympa.
- 2012-001 Security breaches in archives management
- 2015-001 Security breaches in newsletter posting (CVE-2015-1306)
- 2018-001 Security flaws in template editing (CVE-2018-1000550)
- 2020-001 Security flaws in CSRF prevension (CVE-2020-9369)
- 2020-002 Security flaws in setuid wrappers (CVE-2020-10936)
- 2020-003 Defects in the access restriction of Sympa SOAP/HTTP interface (CVE-2020-29668)
- 2021-001 Inappropriate use of the
cookieparameter