2 matches found
CVE-2014-5188
Cross-site scripting XSS vulnerability in doemailpassword.tml in Lyris ListManager LM 8.95a allows remote attackers to inject arbitrary web script or HTML via the EmailAddr parameter...
CVE-2014-5188
The CVE-2014-5188 issue affects Lyris ListManager (LM) 8.95a, in the doemailpassword.tml page, where the EmailAddr parameter is unsafely processed, enabling cross-site scripting (XSS). Exploitation is via crafted input submitted to the EmailAddr field (e.g., POST to doemailpassword.tml) which can...