CVE-2018-19516

Name of the Vulnerable Software and Affected Versions: KDE Applications versions prior to 18.12.0

Description: The issue arises from the improper restriction of handling an http-equiv="REFRESH" value in the messagepartthemes/default/defaultrenderer.cpp file within messagelib in KDE Applications. This could potentially lead to unintended behavior.

Recommendations: For versions prior to 18.12.0, update to version 18.12.0 or later to resolve the issue. As a temporary workaround, consider restricting the handling of http-equiv="REFRESH" values in the defaultrenderer.cpp file until a patch is available.