Description
Mailman 1.1 allows list administrators to execute arbitrary commands via shell metacharacters in the %(listname) macro expansion.
Remediation
References
Related Vulnerabilities
WordPress Plugin WP Mail Log Cross-Site Scripting (1.1.1)
Jboss EAP Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2019-14885)
WordPress Plugin WordPress Leads Unspecified Vulnerability (1.6.8)
WordPress Plugin Sabre 'tools.php' Cross-Site Scripting (1.2.0)
WordPress 4.1.x Same Origin Method Execution (SOME) Vulnerability (4.1 - 4.1.10)