Back to search
CVE-2008-0564
Published: Feb 5, 2008
Modified: Aug 7, 2024
PUBLISHED
Description
Multiple cross-site scripting (XSS) vulnerabilities in Mailman before 2.1.10b1 allow remote attackers to inject arbitrary web script or HTML via unspecified vectors related to (1) editing templates and (2) the list's "info attribute" in the web administrator interface, a different vulnerability than CVE-2006-3636.
| Vendor | Product | Versions |
|---|---|---|
n/a | n/a | affected n/a |
References
SUSE-SR:2008:017
vendor-advisory
x_refsource_SUSE
MDVSA-2008:061
vendor-advisory
x_refsource_MANDRIVA
RHSA-2011:0307
vendor-advisory
x_refsource_REDHAT
https://issues.rpath.com/browse/RPL-2207
x_refsource_CONFIRM
ADV-2008-0422
vdb-entry
x_refsource_VUPEN
31687
third-party-advisory
x_refsource_SECUNIA
APPLE-SA-2010-03-29-1
vendor-advisory
x_refsource_APPLE
http://wiki.rpath.com/Advisories:rPSA-2008-0056
x_refsource_CONFIRM
FEDORA-2008-1334
vendor-advisory
x_refsource_FEDORA
28966
third-party-advisory
x_refsource_SECUNIA
USN-586-1
vendor-advisory
x_refsource_UBUNTU
http://support.apple.com/kb/HT4077
x_refsource_CONFIRM
http://sourceforge.net/project/shownotes.php?release_id=559308&group_id=103
x_refsource_CONFIRM
28916
third-party-advisory
x_refsource_SECUNIA
[Mailman-Announce] 20080203 Mailman 2.1.10b3 Released (was: Re: Mailman 2.1.10b1 Released)
mailing-list
x_refsource_MLIST
20080215 rPSA-2008-0056-1 mailman
mailing-list
x_refsource_BUGTRAQ
29388
third-party-advisory
x_refsource_SECUNIA
27630
vdb-entry
x_refsource_BID
ADV-2011-0542
vdb-entry
x_refsource_VUPEN
28794
third-party-advisory
x_refsource_SECUNIA
29249
third-party-advisory
x_refsource_SECUNIA
https://bugzilla.redhat.com/show_bug.cgi?id=431526
x_refsource_CONFIRM
43549
third-party-advisory
x_refsource_SECUNIA
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now