GNU : Security Vulnerabilities, CVEs, Published In 2002 (XSS)
Cross-site scripting vulnerabilities in Mailman before 2.0.11 allow remote attackers to execute script via (1) the admin login page, or (2) the Pipermail index summaries.
Max CVSS
7.5
EPSS Score
1.48%
Published
2002-06-18
Updated
2009-07-21
Cross-site scripting vulnerability in Mailman before 2.0.12 allows remote attackers to execute script as other users via a subscriber's list subscription options in the (1) adminpw or (2) info parameters to the ml-name feature.
Max CVSS
7.5
EPSS Score
8.27%
Published
2002-09-05
Updated
2008-09-05
2 vulnerabilities found