Gnu · Mailman · CVE-2003-0992
**Name of the Vulnerable Software and Affected Versions**
Mailman versions prior to 2.1.3
**Description**
A cross-site scripting (XSS) issue exists, allowing remote attackers to steal cookies of other users. This occurs due to a vulnerability in the create CGI script.
**Recommendations**
For versions prior to 2.1.3, update to version 2.1.3 or later to resolve the issue.