Description

Cross-site scripting (XSS) vulnerability in options.py for Mailman 2.1 allows remote attackers to inject script or HTML into web pages via the (1) email or (2) language parameters.

Remediation

References

CVE-2003-0038

Related Vulnerabilities

WordPress Deserialization of Untrusted Data Vulnerability (CVE-2018-20148)

WordPress Plugin WP Gravity Forms Zoho CRM Add-on Cross-Site Scripting (1.1.5)

IBM RTC Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2016-2865)

WordPress Plugin Simple Membership Cross-Site Scripting (3.5.6)

MySQL Improper Restriction of Operations within the Bounds of a Memory Buffer Vulnerability (CVE-2012-5611)

Severity

Medium

Classification

CVE-2003-0038

Tags

Missing Update Known Vulnerabilities