Vulnerabilities > Debian > Reportbug
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2014-08-06 | CVE-2014-0479 | Code Injection vulnerability in multiple products reportbug before 6.4.4+deb7u1 and 6.5.x before 6.5.0+nmu1 allows remote attackers to execute arbitrary commands via vectors related to compare_versions and reportbug/checkversions.py. | 6.8 |
| 2005-02-28 | CVE-2005-0625 | Information Disclosure vulnerability in Debian Reportbug 2.60/2.61/3.2 reportbug 3.2 includes settings from .reportbugrc in bug reports, which exposes sensitive information such as smtpuser and smtppasswd. | 2.1 |
| 2005-02-28 | CVE-2005-0624 | Local Security vulnerability in Debian Reportbug 2.60/2.61 reportbug before 2.62 creates the .reportbugrc configuration file with world-readable permissions, which allows local users to obtain email smarthost passwords. | 2.1 |