Описание
Cross-site scripting vulnerability in Mailman email archiver before 2.08 allows attackers to obtain sensitive information or authentication credentials via a malicious link that is accessed by other web users.
Ссылки
- PatchVendor Advisory
- PatchVendor Advisory
- PatchVendor Advisory
- PatchVendor Advisory
Уязвимые конфигурации
Конфигурация 1
Одно из
cpe:2.3:a:gnu:mailman:*:*:*:*:*:*:*:*
cpe:2.3:a:gnu:mailman:5.0:*:*:*:*:*:*:*
cpe:2.3:a:gnu:mailman:5.1:*:*:*:*:*:*:*
cpe:2.3:a:gnu:mailman:6.0:*:*:*:*:*:*:*
cpe:2.3:a:gnu:mailman:7.0:*:*:*:*:*:*:*
EPSS
Процентиль: 70%
0.00654
Низкий
5.1 Medium
CVSS2
Дефекты
NVD-CWE-Other
Связанные уязвимости
redhat
больше 23 лет назад
Cross-site scripting vulnerability in Mailman email archiver before 2.08 allows attackers to obtain sensitive information or authentication credentials via a malicious link that is accessed by other web users.
github
около 3 лет назад
Cross-site scripting vulnerability in Mailman email archiver before 2.08 allows attackers to obtain sensitive information or authentication credentials via a malicious link that is accessed by other web users.
EPSS
Процентиль: 70%
0.00654
Низкий
5.1 Medium
CVSS2
Дефекты
NVD-CWE-Other