An issue was discovered in management/commands/hyperkitty_import.py in HyperKitty through 1.3.4. When importing a private mailing list's archives, these archives are publicly visible for the duration of the import. For example, sensitive information might be available on the web for an hour during a large migration from Mailman 2 to Mailman 3.
Metrics
Affected Vendors & Products
References
History
No history.
MITRE
Status: PUBLISHED
Assigner: mitre
Published: 2021-05-26T13:51:14
Updated: 2024-08-03T23:42:19.473Z
Reserved: 2021-05-17T00:00:00
Link: CVE-2021-33038
Vulnrichment
No data.
NVD
Status : Modified
Published: 2021-05-26T14:15:08.913
Modified: 2024-11-21T06:08:10.530
Link: CVE-2021-33038
Redhat
No data.