[Forgot Password]
Login  Register Subscribe

30389

 
 

423868

 
 

244411

 
 

909

 
 

193363

 
 

277

Paid content will be excluded from the download.


Download | Alert*
OVAL

DSA-4246-1 mailman -- mailman

ID: oval:org.secpod.oval:def:603453Date: (C)2018-07-16   (M)2023-12-20
Class: PATCHFamily: unix




Toshitsugu Yoneyama of Mitsui Bussan Secure Directions, Inc. discovered that mailman, a web-based mailing list manager, is prone to a cross-site scripting flaw allowing a malicious listowner to inject scripts into the listinfo page, due to not validated input in the host_name field.

Platform:
Debian 9.x
Product:
mailman
Reference:
DSA-4246-1
CVE-2018-0618
CVE    1
CVE-2018-0618
CPE    2
cpe:/a:gnu:mailman
cpe:/o:debian:debian_linux:9.x

© SecPod Technologies