PT-2018-8974 · Gnu+5 · Mailman+5

Toshitsugu Yoneyama

Published

2018-06-30

Updated

2020-05-06

CVE-2018-0618

CVSS v3.1

5.4

Medium

Vector

AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N

Name of the Vulnerable Software and Affected Versions Mailman versions 2.1.26 and earlier

Description The issue allows remote authenticated attackers to inject arbitrary web script or HTML.

Recommendations For Mailman versions 2.1.26 and earlier, update to a version later than 2.1.26 to resolve the issue.

Fix

XSS

Found an issue in the description? Have something to add? Feel free to write us 👾

ALT-PU-2019-1010

CESA-2020_1054

CVE-2018-0618

DLA-1442-1

DSA-4246-1

MGASA-2018-0313

OPENSUSE-SU-2018_1858-1

RHSA-2020:1054

RHSA-2020_1054

SUSE-SU-2018:4296-1

SUSE-SU-2019:13924-1

USN-4348-1

Alt Linux

Centos

Mailman

Red Hat

Suse

Ubuntu