Pipermail in Mailman stores private mail messages with predictable filenames in a world-executable directory, which allows local users to read private mailing list archives.
It was found that mailman did not sanitize the list name before passing it to certain MTAs A local attacker could use this flaw to execute arbitrary code as the user running mailman (CVE-2015-2775)
It was found that mailman stored private email messages in a world-readable directory A local user could use this flaw to read private mailing list a ...