21 matches found
EUVD-2008-0574
Malware in sbrugna...
EUVD-2002-0385
Malware in sbrugna...
Alibaba Cloud Linux 3 : 0194: mailman:2.1 (ALINUX3-SA-2022:0194)
The remote Alibaba Cloud Linux 3 host has packages installed that are affected by multiple vulnerabilities as referenced in the ALINUX3-SA-2022:0194 advisory. Package updates are available for Alibaba Cloud Linux 3 that fix the following vulnerabilities: CVE-2021-42096: GNU Mailman before 2.1.35...
USN-5151-2 mailman vulnerabilities
USN-5151-1 fixed several vulnerabilities in Mailman. This update provides the corresponding update for Ubuntu 20.04 ESM. Original advisory details: It was discovered that Mailman incorrectly handled certain URL. An attacker could possibly use this issue to execute arbitrary code. CVE-2021-43331 I...
USN-5151-1 mailman vulnerabilities
It was discovered that Mailman incorrectly handled certain URL. An attacker could possibly use this issue to execute arbitrary code. CVE-2021-43331 It was discovered that Mailman incorrectly handled certain inputs. An attacker could possibly use this issue to expose sensitive information...
USN-4348-1: Mailman vulnerabilities
It was discovered that Mailman incorrectly handled certain inputs. An attacker could possibly use this to issue execute arbitrary scripts or HTML. CVE-2018-0618 It was discovered that Mailman incorrectly handled certain inputs. An attacker could possibly use this issue to display arbitrary text o...
Ubuntu 14.04 LTS / 16.04 LTS : Mailman vulnerabilities (USN-3118-1)
The remote Ubuntu 14.04 LTS / 16.04 LTS host has a package installed that is affected by multiple vulnerabilities as referenced in the USN-3118-1 advisory. It was discovered that the Mailman administrative web interface did not protect against cross-site request forgery CSRF attacks. If an...
CVE-2008-0564
Multiple cross-site scripting XSS vulnerabilities in Mailman before 2.1.10b1 allow remote attackers to inject arbitrary web script or HTML via unspecified vectors related to 1 editing templates and 2 the list's "info attribute" in the web administrator interface, a different vulnerability than...
[SECURITY] [DSA 674-1] New mailman packages fix several vulnerabilities
-------------------------------------------------------------------------- Debian Security Advisory DSA 674-1 [email protected] http://www.debian.org/security/ Martin Schulze February 10th, 2005 http://www.debian.org/security/faq -...
USN-59-1: mailman vulnerabilities
Florian Weimer discovered a cross-site scripting vulnerability in mailman's automatically generated error messages. An attacker could craft an URL containing JavaScript or other content embedded into HTML which triggered a mailman error page. When an unsuspecting user followed this URL, the...
CVE-2004-1143
The password generation in mailman before 2.1.5 generates only 5 million unique passwords, which makes it easier for remote attackers to guess passwords via a brute force attack...
Debian DSA-094-1 : mailman - XSS hole
Barry A. Warsaw reported several cross-site scripting security holes in Mailman, due to non-existent escaping of CGI variables. These have been fixed upstream in version 2.0.8, and the relevant patches have been backported to version 1.1-10 in Debian. %NASLMINLEVEL 70300 C Tenable Network Securit...
Debian DSA-436-1 : mailman - several vulnerabilities
Several vulnerabilities have been fixed in the mailman package : - CAN-2003-0038 - potential cross-site scripting via certain CGI parameters not known to be exploitable in this version - CAN-2003-0965 - cross-site scripting in the administrative interface - CAN-2003-0991 - certain malformed email...
GNU Mailman < 2.1.8 Multiple Vulnerabilities
Binary data 3507.prm...
GNU Mailman Multiple Unspecified Remote Vulnerabilities
Binary data 2523.prm...
DSA-436 mailman - several vulnerabilities
Bulletin has no description...
CVE-2001-1132
Mailman 2.0.x before 2.0.6 allows remote attackers to gain access to list administrative pages when there is an empty site or list password, which is not properly handled during the call to the crypt function during authentication...
CVE-2002-0388
Cross-site scripting vulnerabilities in Mailman before 2.0.11 allow remote attackers to execute script via 1 the admin login page, or 2 the Pipermail index summaries...
CVE-2002-0388
Cross-site scripting vulnerabilities in Mailman before 2.0.11 allow remote attackers to execute script via 1 the admin login page, or 2 the Pipermail index summaries...
CVE-2002-0388
Removed by vendor...