6.8
CVSSv2

CVE-2016-7123

Published: 02/09/2016 Updated: 29/07/2017
CVSS v2 Base Score: 6.8 | Impact Score: 6.4 | Exploitability Score: 8.6
CVSS v3 Base Score: 8.8 | Impact Score: 5.9 | Exploitability Score: 2.8
VMScore: 605
Vector: AV:N/AC:M/Au:N/C:P/I:P/A:P

Vulnerability Summary

Cross-site request forgery (CSRF) vulnerability in the admin web interface in GNU Mailman prior to 2.1.15 allows remote malicious users to hijack the authentication of administrators.

Most Upvoted Vulmon Research Post

There is no Researcher post for this vulnerability
Would you like to share something about it? Sign up now to share your knowledge with the community.
Vulnerable Product Search on Vulmon Subscribe to Product

gnu mailman

Vendor Advisories

Several security issues were fixed in Mailman ...
Cross-site request forgery (CSRF) vulnerability in the admin web interface in GNU Mailman before 2115 allows remote attackers to hijack the authentication of administrators ...
Oracle Solaris Third Party Bulletin - July 2017 Description The Oracle Solaris Third Party Bulletin announces patches for one or more security vulnerabilities fixed in third party software that is included in Oracle Solaris distributions Starting January 20, 2015, Third Party Bulletins are released on the same day when Oracle Critical P ...