Cross-Site Scripting Vulnerability in Mailman 2.0.12 and Earlier

Cross-Site Scripting Vulnerability in Mailman 2.0.12 and Earlier

CVE-2002-0855 · HIGH Severity

AV:N/AC:L/AU:N/C:P/I:P/A:P

Cross-site scripting vulnerability in Mailman before 2.0.12 allows remote attackers to execute script as other users via a subscriber's list subscription options in the (1) adminpw or (2) info parameters to the ml-name feature.

Learn more about our Cyber Security Assurance Subscription.