Description
Cross-site scripting (XSS) vulnerability in mmsearch/design in the Mailman/htdig integration patch for Mailman allows remote attackers to inject arbitrary web script or HTML via the config parameter.
Remediation
References
Related Vulnerabilities
WordPress Plugin PostmagThemes Demo Import Arbitrary File Upload (1.0.7)
WordPress Plugin ImageDrop 'ImageDrop.php' Blind SQL Injection (1.1.2)
WordPress Plugin Zedity:The Easiest Way To Create Posts & Pages Cross-Site Scripting (2.5.0)
Oracle JRE CVE-2019-2894 Vulnerability (CVE-2019-2894)
TYPO3 Permissions, Privileges, and Access Controls Vulnerability (CVE-2010-3714)