Description
Cross-site scripting (XSS) vulnerability in the create CGI script for Mailman before 2.1.3 allows remote attackers to steal cookies of other users.
Remediation
References
Related Vulnerabilities
WordPress Plugin jRSS Widget Server-Side Request Forgery (1.2)
Atlassian Jira Uncontrolled Search Path Element Vulnerability (CVE-2019-20400)
WordPress Plugin ecSTATic Arbitrary File Upload (0.9933)
WordPress Plugin Developer Tools Arbitrary File Upload (1.1.4)
WordPress Plugin SEO Redirection-301 Redirect Manager Cross-Site Scripting (4.2)