Gnu: >> Mailman >> 2.1 Security Vulnerabilities
Cross-site scripting (XSS) vulnerability in options.py for Mailman 2.1 allows remote attackers to inject script or HTML into web pages via the (1) email or (2) language parameters.
CVSS Score
4.3
EPSS Score
0.106
Published
2003-02-07
Pipermail in Mailman stores private mail messages with predictable filenames in a world-executable directory, which allows local users to read private mailing list archives.
CVSS Score
2.1
EPSS Score
0.002
Published
2002-06-18
Cross-site scripting vulnerability in Mailman email archiver before 2.08 allows attackers to obtain sensitive information or authentication credentials via a malicious link that is accessed by other web users.
CVSS Score
5.1
EPSS Score
0.007
Published
2001-12-21
Page 4