VULHUB ™

GNU Mailman is prone to a cross-site scripting vulnerability. An attacker may construct a malicious link to the administrative login page, which contains arbitrary HTML and script code. A user visiting the link will have the attacker's script code executed in their web browser in the context of the site running the vulnerable software. This is a variation of the vulnerability described in Bugtraq ID 4825 "GNU Mailman Admin Login Cross-Site Scripting Vulnerability". This variation affects version 2.0.11 of GNU Mailman as well.

GNU Mailman is prone to a cross-site scripting vulnerability. An attacker may construct a malicious link to the administrative login page, which contains arbitrary HTML and script code. A user visiting the link will have the attacker's script code executed in their web browser in the context of the site running the vulnerable software. This is a variation of the vulnerability described in Bugtraq ID 4825 "GNU Mailman Admin Login Cross-Site Scripting Vulnerability". This variation affects version 2.0.11 of GNU Mailman as well.