GHSA-xqvg-xm9m-p2c4

Опубликовано: 11 сент. 2018

Источник: github

Github: Прошло ревью

CVSS3: 6.5

Описание

Moderate severity vulnerability that affects mailman

An issue was discovered in GNU Mailman before 2.1.28. A crafted URL can cause arbitrary text to be displayed on a web page from a trusted site.

Ссылки

Пакеты

Наименование

mailman

pip

Затронутые версииВерсия исправления

< 2.1.28

2.1.28

EPSS

Процентиль: 64%

0.00478

Низкий

6.5 Medium

CVSS3

CVE ID

CVE-2018-13796

Дефекты

CWE-20

Связанные уязвимости

CVE-2018-13796

CVSS3: 6.5

ubuntu

больше 7 лет назад

An issue was discovered in GNU Mailman before 2.1.28. A crafted URL can cause arbitrary text to be displayed on a web page from a trusted site.

CVE-2018-13796

CVSS3: 4.3

redhat

больше 7 лет назад

An issue was discovered in GNU Mailman before 2.1.28. A crafted URL can cause arbitrary text to be displayed on a web page from a trusted site.

CVE-2018-13796

CVSS3: 6.5

nvd

больше 7 лет назад

An issue was discovered in GNU Mailman before 2.1.28. A crafted URL can cause arbitrary text to be displayed on a web page from a trusted site.

CVE-2018-13796

CVSS3: 6.5

debian

больше 7 лет назад

An issue was discovered in GNU Mailman before 2.1.28. A crafted URL ca ...

openSUSE-SU-2018:2309-1

suse-cvrf

больше 7 лет назад

Security update for mailman

EPSS

Процентиль: 64%

0.00478

Низкий

6.5 Medium

CVSS3

CVE ID

CVE-2018-13796

Дефекты

CWE-20