Cross-site scripting vulnerability in Mailman before 2.0.12 allows remote attackers to execute script as other users via a subscribers list subscription options in the (1) adminpw or (2) info parameters to the ml-name feature.
Name | Vendor | Start Version | End Version |
---|---|---|---|
Mailman | Gnu | 2.0.12 (including) | 2.0.12 (including) |