Show filters
2 Total Results
Displaying 1-2 of 2
Sort by:
Attacker Value
Unknown

CVE-2002-0417

Disclosure Date: August 12, 2002 (last updated February 22, 2025)
Directory traversal vulnerability in Endymion MailMan before 3.1 allows remote attackers to read arbitrary files via a .. (dot dot) and a null character in the ALTERNATE_TEMPLATES parameter for various mmstdo*.cgi programs.
0
0
Attacker Value
Unknown

CVE-2001-0021

Disclosure Date: February 16, 2001 (last updated February 22, 2025)
MailMan Webmail 3.0.25 and earlier allows remote attackers to execute arbitrary commands via shell metacharacters in the alternate_template parameter.
0
0