Description

Format string vulnerability in Mailman before 2.1.9 allows attackers to execute arbitrary code via unspecified vectors. NOTE: the vendor has disputed this vulnerability, stating that it is "unexploitable.

Remediation

References

CVE-2006-2191

Related Vulnerabilities

WordPress Plugin Captcha by BestWebSoft Cross-Site Scripting (4.2.9)

Moodle Incorrect Authorization Vulnerability (CVE-2020-14321)

WordPress Plugin Formidable-Clockwork SMS Cross-Site Scripting (1.0.3)

WordPress Plugin Portfolio Gallery-Photo Gallery Cross-Site Scripting (2.1.10)

WordPress Plugin WooCommerce Upload Files Arbitrary File Upload (59.3)

Severity

High

Classification

CVE-2006-2191

Tags

Missing Update Known Vulnerabilities