Tyler Shields

**Name of the Vulnerable Software and Affected Versions** Lyris ListManager versions 8.x through 8.94 Lyris ListManager versions 9.2 through 9.2b Lyris ListManager versions 9.3 through 9.3a **Description** The issue allows remote attackers to gain list administrator privileges or access arbitrary mailing lists via unknown vectors related to modification of client-side information. Additionally, remote authenticated administrators can modify other account data by creating new accounts that collide with existing accounts. **Recommendations** For Lyris ListManager versions 8.x through 8.94, update to version 8.95d or later. For Lyris ListManager versions 9.2 through 9.2b, update to version 9.2c or later. For Lyris ListManager versions 9.3 through 9.3a, update to version 9.3b or later.