Show filters
13 Total Results
Displaying 11-13 of 13
Sort by:
Attacker Value
Unknown

CVE-2004-1177

Disclosure Date: January 10, 2005 (last updated February 22, 2025)
Cross-site scripting (XSS) vulnerability in the driver script in mailman before 2.1.5 allows remote attackers to inject arbitrary web script or HTML via a URL, which is not properly escaped in the resulting error page.
0
0
Attacker Value
Unknown

CVE-2004-1143

Disclosure Date: December 31, 2004 (last updated February 22, 2025)
The password generation in mailman before 2.1.5 generates only 5 million unique passwords, which makes it easier for remote attackers to guess passwords via a brute force attack.
0
0
Attacker Value
Unknown

CVE-2004-0412

Disclosure Date: August 18, 2004 (last updated February 22, 2025)
Mailman before 2.1.5 allows remote attackers to obtain user passwords via a crafted email request to the Mailman server.
0
0
View More Topics  < Previous