CVE-2011-0707

Priority
Description
Multiple cross-site scripting (XSS) vulnerabilities in Cgi/confirm.py in
GNU Mailman 2.1.14 and earlier allow remote attackers to inject arbitrary
web script or HTML via the (1) full name or (2) username field in a
confirmation message.
Notes
More Information

Updated: 2019-12-05 20:56:36 UTC (commit 0aa5e7c87c8b55d2ec5c7f4ca1179cf75de91961)