GNU Mailman prior to 2.1.35 may allow remote Privilege Escalation. A certain csrf_token value is derived from the admin password, and may be useful in conducting a brute-force attack against that password.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
gnu mailman |
||
debian debian linux 10.0 |