AI Score
Confidence
High
EPSS
Percentile
84.5%
Cross-site scripting (XSS) vulnerability in index.php in phplist before 2.10.3 allows remote attackers to inject arbitrary web script or HTML via the unsubscribeemail parameter.
mantis.phplist.com/changelog_page.php
secunia.com/advisories/22405
securityreason.com/securityalert/1728
tincan.co.uk/?lid=1821
websecurity.com.ua/267/
www.phplist.com/news
www.securityfocus.com/archive/1/448411/100/0/threaded
www.securityfocus.com/bid/20483
www.vupen.com/english/advisories/2006/4027