Marvin W

2 exploits Active since Sep 2019
CVE-2019-16235 WRITEUP HIGH WRITEUP
Dino <2019-09-10 - Info Disclosure
Dino before 2019-09-10 does not properly check the source of a carbons message in module/xep/0280_message_carbons.vala.
CVSS 7.5
CVE-2019-16236 WRITEUP HIGH WRITEUP
Dino <2019-09-10 - Info Disclosure
Dino before 2019-09-10 does not check roster push authorization in module/roster/module.vala.
CVSS 7.5