CVSS: 5.1EPSS: 0%CPEs: 5EXPL: 0CVE-2001-0884
https://notcve.org/view.php?id=CVE-2001-0884
Cross-site scripting vulnerability in Mailman email archiver before 2.08 allows attackers to obtain sensitive information or authentication credentials via a malicious link that is accessed by other web users. Vulnerabilidad de secuencias de comandos en sitios cruzados en el archivador de correo electrónico Mailman permite a atacantes ganar información sensible o credenciales de autenticación mediante un enlace malicioso que es accedido por otros usuarios web. • http://www.redhat.com/support/errata/RHSA-2001-168.html http://www.redhat.com/support/errata/RHSA-2001-169.html http://www.redhat.com/support/errata/RHSA-2001-170.html http://www.securityfocus.com/advisories/3721 http://www.securityfocus.com/archive/1/242839 http://www.securityfocus.com/bid/3602 https://exchange.xforce.ibmcloud.com/vulnerabilities/7617 •
CVSS: 4.6EPSS: 0%CPEs: 7EXPL: 0CVE-2000-0701
https://notcve.org/view.php?id=CVE-2000-0701
The wrapper program in mailman 2.0beta3 and 2.0beta4 does not properly cleanse untrusted format strings, which allows local users to gain privileges. • http://archives.neohapsis.com/archives/bugtraq/2000-07/0474.html http://archives.neohapsis.com/archives/bugtraq/2000-07/0479.html http://www.redhat.com/support/errata/RHSA-2000-030.html http://www.securityfocus.com/archive/1/73220 http://www.securityfocus.com/bid/1539 http://www.securityfocus.com/templates/archive.pike?list=1&msg=20000802105050.A11733%40rak.isternet.sk •