8 matches found
Mailman 1.x > 2.1.23 - Cross Site Scripting (XSS)
Title: Mailman 1.x 2.1.23 - Cross Site Scripting XSS Type: Reflected XSS Software: Mailman Version: =1.x = 2.1.23 Vendor Homepage: https://www.list.org Original link: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-5950 POC Author: Valerio Alessandroni Date: 28/10/2020 Description:...
Cross-site Scripting (XSS)
mailman is vulnerable to cross-site scripting XSS attacks. The vulnerability exists as the web UI in Mailman before 2.1.26 allows remote attackers to inject arbitrary web script or HTML via a user-options URL...
Debian DLA-1272-1 : mailman security update
The mailman package has a Cross-site scripting XSS vulnerability in the web UI before 2.1.26 which allows remote attackers to inject arbitrary web script or HTML via a user-options URL For Debian 7 'Wheezy', these problems have been fixed in version 1:2.1.15-1+deb7u3 We recommend that you upgrade...
CVE-2018-5950
Cross-site scripting XSS vulnerability in the web UI in Mailman before 2.1.26 allows remote attackers to inject arbitrary web script or HTML via a user-options URL...
Cross site scripting
Cross-site scripting XSS vulnerability in the web UI in Mailman before 2.1.26 allows remote attackers to inject arbitrary web script or HTML via a user-options URL...
CVE-2018-5950
Removed by vendor...
CVE-2018-5950
Cross-site scripting XSS vulnerability in the web UI in Mailman before 2.1.26 allows remote attackers to inject arbitrary web script or HTML via a user-options URL...
CVE-2018-5950
Cross-site scripting XSS vulnerability in the web UI in Mailman before 2.1.26 allows remote attackers to inject arbitrary web script or HTML via a user-options URL...