Cross-site scripting (XSS) vulnerability in the create list option in Sympa 4.1.x and earlier allows remote authenticated users to inject arbitrary web script or HTML via the description field.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.021
EPSS Ranking 79.6%