CVEDB API

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2004-1177

Cross-site scripting (XSS) vulnerability in the driver script in mailman before 2.1.5 allows remote attackers to inject arbitrary web script or HTML via a URL, which is not properly escaped in the resulting error page.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.016

EPSS Ranking 80.6%

CVSS Severity

CVSS v2 Score 4.3

References

Products affected by CVE-2004-1177

Gnu » Mailman » Version: 1.0

cpe:2.3:a:gnu:mailman:1.0
Gnu » Mailman » Version: 1.1

cpe:2.3:a:gnu:mailman:1.1
Gnu » Mailman » Version: 2.0

cpe:2.3:a:gnu:mailman:2.0
Gnu » Mailman » Version: 2.0.1

cpe:2.3:a:gnu:mailman:2.0.1
Gnu » Mailman » Version: 2.0.10

cpe:2.3:a:gnu:mailman:2.0.10
Gnu » Mailman » Version: 2.0.11

cpe:2.3:a:gnu:mailman:2.0.11
Gnu » Mailman » Version: 2.0.12

cpe:2.3:a:gnu:mailman:2.0.12
Gnu » Mailman » Version: 2.0.13

cpe:2.3:a:gnu:mailman:2.0.13
Gnu » Mailman » Version: 2.0.2

cpe:2.3:a:gnu:mailman:2.0.2
Gnu » Mailman » Version: 2.0.3

cpe:2.3:a:gnu:mailman:2.0.3
Gnu » Mailman » Version: 2.0.4

cpe:2.3:a:gnu:mailman:2.0.4
Gnu » Mailman » Version: 2.0.5

cpe:2.3:a:gnu:mailman:2.0.5
Gnu » Mailman » Version: 2.0.6

cpe:2.3:a:gnu:mailman:2.0.6
Gnu » Mailman » Version: 2.0.7

cpe:2.3:a:gnu:mailman:2.0.7
Gnu » Mailman » Version: 2.0.8

cpe:2.3:a:gnu:mailman:2.0.8
Gnu » Mailman » Version: 2.0.9

cpe:2.3:a:gnu:mailman:2.0.9
Gnu » Mailman » Version: 2.1

cpe:2.3:a:gnu:mailman:2.1
Gnu » Mailman » Version: 2.1.1

cpe:2.3:a:gnu:mailman:2.1.1
Gnu » Mailman » Version: 2.1.2

cpe:2.3:a:gnu:mailman:2.1.2
Gnu » Mailman » Version: 2.1.3

cpe:2.3:a:gnu:mailman:2.1.3
Gnu » Mailman » Version: 2.1.4

cpe:2.3:a:gnu:mailman:2.1.4
Gnu » Mailman » Version: 2.1b1

cpe:2.3:a:gnu:mailman:2.1b1

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2004-1177

Products

Pricing

Contact Us