CVE-2012-2741

CVE-2012-2741 affects phplist (phpList) before version 2.10.18, where a Cross-site Scripting (XSS) vulnerability exists in public_html/lists/admin/ via the num parameter in a reconcileusers action. The underlying issue is unsanitized input that allows arbitrary HTML/script injection. This could e...