An issue was discovered in management/commands/hyperkitty_import.py in HyperKitty through 1.3.4. When importing a private mailing list's archives, these archives are publicly visible for the duration of the import. For example, sensitive information might be available on the web for an hour during a large migration from Mailman 2 to Mailman 3.
History

No history.

cve-icon MITRE

Status: PUBLISHED

Assigner: mitre

Published: 2021-05-26T13:51:14

Updated: 2024-08-03T23:42:19.473Z

Reserved: 2021-05-17T00:00:00

Link: CVE-2021-33038

cve-icon Vulnrichment

No data.

cve-icon NVD

Status : Modified

Published: 2021-05-26T14:15:08.913

Modified: 2024-11-21T06:08:10.530

Link: CVE-2021-33038

cve-icon Redhat

No data.