Lucene search
K

12 matches found

Tenable Nessus
Tenable Nessus
added 2026/01/19 12:0 a.m.3 views

MiracleLinux 3 : mailman-2.1.11-3.3AXS3 (AXBA:2009-202:01)

The remote MiracleLinux 3 host has a package installed that is affected by a vulnerability as referenced in the AXBA:2009-202:01 advisory. - Multiple cross-site scripting XSS vulnerabilities in Mailman before 2.1.10b1 allow remote attackers to inject arbitrary web script or HTML via unspecified...

6.8CVSS5.5AI score0.06425EPSS
Exploits1References2
EUVD
EUVD
added 2025/10/07 12:30 a.m.7 views

EUVD-2001-1192

Malware in sbrugna...

7.5CVSS6.4AI score0.02999EPSS
Exploits0References6
RedhatCVE
RedhatCVE
added 2025/05/22 7:8 p.m.8 views

CVE-2021-20866

Advanced Custom Fields versions prior to 5.11 and Advanced Custom Fields Pro versions prior to 5.11 contain a missing authorization vulnerability in obtaining the user list which may allow a user to obtain the unauthorized information via unspecified vectors...

6.5CVSS6.4AI score0.01662EPSS
Exploits0References1
BDU FSTEC
BDU FSTEC
added 2023/12/12 12:0 a.m.5 views

The vulnerability of the get_parentControl_list_Info() function in the Tenda AC10 router’s microprogramming software allows a attacker to execute arbitrary code or cause a service failure.

The vulnerability of the getparentControllistInfo function in the Tenda AC10 router’s microprogramming software is related to the execution of operations outside the buffer in memory when processing the urls parameter. Exploiting this vulnerability allows a remote attacker to execute arbitrary co...

10CVSS8.6AI score0.00976EPSS
Exploits1References5Affected Software1
SUSE CVE
SUSE CVE
added 2023/02/15 5:57 a.m.3 views

SUSE CVE-2010-3089

Multiple cross-site scripting XSS vulnerabilities in GNU Mailman before 2.1.14rc1 allow remote authenticated users to inject arbitrary web script or HTML via vectors involving 1 the list information field or 2 the list description field...

3.5CVSS5.7AI score0.01973EPSS
Exploits0References5
NVD
NVD
added 2010/09/15 8:0 p.m.23 views

CVE-2010-3089

Multiple cross-site scripting XSS vulnerabilities in GNU Mailman before 2.1.14rc1 allow remote authenticated users to inject arbitrary web script or HTML via vectors involving 1 the list information field or 2 the list description field...

3.5CVSS5AI score0.01973EPSS
Exploits0References30
Prion
Prion
added 2010/09/15 8:0 p.m.17 views

Cross site scripting

Multiple cross-site scripting XSS vulnerabilities in GNU Mailman before 2.1.14rc1 allow remote authenticated users to inject arbitrary web script or HTML via vectors involving 1 the list information field or 2 the list description field...

3.5CVSS5.2AI score0.01973EPSS
Exploits0References30Affected Software1
Debian CVE
Debian CVE
added 2010/09/15 7:0 p.m.28 views

CVE-2010-3089

Removed by vendor...

3.5CVSS6.1AI score0.01973EPSS
Exploits0
Positive Technologies
Positive Technologies
added 2010/09/15 12:0 a.m.4 views

PT-2010-4537 · Gnu +2 · Gnu Mailman +2

Name of the Vulnerable Software and Affected Versions: GNU Mailman versions prior to 2.1.14rc1 Description: The issue involves multiple cross-site scripting XSS vulnerabilities that allow remote authenticated users to inject arbitrary web script or HTML. This can be achieved through vectors...

8.8CVSS6.5AI score0.07964EPSS
Exploits1References47
UbuntuCve
UbuntuCve
added 2010/09/15 12:0 a.m.26 views

CVE-2010-3089

Multiple cross-site scripting XSS vulnerabilities in GNU Mailman before 2.1.14rc1 allow remote authenticated users to inject arbitrary web script or HTML via vectors involving 1 the list information field or 2 the list description field...

3.5CVSS6.7AI score0.01973EPSS
Exploits0References2
Debian
Debian
added 2002/11/22 8:44 a.m.14 views

[SECURITY] [DSA NONE] New security.debian.org server after fire in Twente

-------------------------------------------------------------------------- Debian Security Announcement [email protected] http://www.debian.org/security/ Martin Schulze November 22nd, 2002 http://www.debian.org/security/faq -...

7.3AI score
Exploits0
securityvulns
securityvulns
added 2001/09/07 12:0 a.m.49 views

Security Bulletin MS01-047

---------------------------------------------------------------------- Title: OWA Function Allows Unauthenticated User to Enumerate Global Address List Date: 06 September 2001 Software: Exchange 5.5 Impact: Information Disclosure Bulletin: MS01-047 Microsoft encourages customers to review the...

1.3AI score
Exploits0
Rows per page
Query Builder