CVE-2011-0707 is a vulnerability in GNU Mailman
Published on February 22, 2011

Multiple cross-site scripting (XSS) vulnerabilities in Cgi/confirm.py in GNU Mailman 2.1.14 and earlier allow remote attackers to inject arbitrary web script or HTML via the (1) full name or (2) username field in a confirmation message.

Vendor Advisory Vendor Advisory Vendor Advisory Vendor Advisory Vendor Advisory Vendor Advisory Vendor Advisory Vendor Advisory Vendor Advisory Vendor Advisory Vendor Advisory NVD

Products Associated with CVE-2011-0707

Want to know whenever a new CVE is published for GNU Mailman? stack.watch will email you.

GNU Mailman

Exploit Probability

EPSS

2.46%

Percentile

85.04%

EPSS (Exploit Prediction Scoring System) scores estimate the probability that a vulnerability will be exploited in the wild within the next 30 days. The percentile shows you how this score compares to all other vulnerabilities.

CVE-2011-0707 is a vulnerability in GNU MailmanPublished on February 22, 2011

Products Associated with CVE-2011-0707

Exploit Probability

CVE-2011-0707 is a vulnerability in GNU Mailman
Published on February 22, 2011