Mailman@2.0.14 Security Vulnerabilities and Issues — Mailman@2.0.14 CVE List

Lucene search

GnuMailman2.0.14

3 matches found

CVE•added 2011/02/22 7:0 p.m.•66 views

CVE-2011-0707

Multiple cross-site scripting (XSS) vulnerabilities in Cgi/confirm.py in GNU Mailman 2.1.14 and earlier allow remote attackers to inject arbitrary web script or HTML via the (1) full name or (2) username field in a confirmation message.

4.3CVSS7.4AI score0.0246EPSS

CVE•added 2005/11/16 7:42 a.m.•59 views

CVE-2005-3573

Scrubber.py in Mailman 2.1.5-8 does not properly handle UTF8 character encodings in filenames of e-mail attachments, which allows remote attackers to cause a denial of service (application crash).

5CVSS6.2AI score0.05745EPSS

CVE•added 2006/03/31 11:6 a.m.•51 views

CVE-2006-0052

The attachment scrubber (Scrubber.py) in Mailman 2.1.5 and earlier, when using Python's library email module 2.5, allows remote attackers to cause a denial of service (mailing list delivery failure) via a multipart MIME message with a single part that has two blank lines between the first boundary ...

5CVSS6.2AI score0.06409EPSS