FreshPorts - VuXML

This page displays vulnerability information about FreeBSD Ports.

The VUXML data was last processed by FreshPorts on 2024-04-22 18:21:47 UTC

List all Vulnerabilities, by package

List all Vulnerabilities, by date

k68

These are the vulnerabilities relating to the commit you have selected:

VuXML ID	Description
3d0eeef8-0cf9-11e8-99b0-d017c2987f9a	Mailman -- Cross-site scripting (XSS) vulnerability in the web UI Mark Sapiro reports: An XSS vulnerability in the user options CGI could allow a crafted URL to execute arbitrary javascript in a user's browser. A related issue could expose information on a user's options page without requiring login. Discovery 2018-01-20 Entry 2018-02-08 mailman < 2.1.26 mailman-with-htdig < 2.1.26 ja-mailman le 2.1.14.j7_3,1 https://www.mail-archive.com/mailman-users@python.org/msg70478.html CVE-2018-5950

VuXML ID

Description

3d0eeef8-0cf9-11e8-99b0-d017c2987f9a

Mailman -- Cross-site scripting (XSS) vulnerability in the web UI

Mark Sapiro reports:

An XSS vulnerability in the user options CGI could allow a crafted URL to execute arbitrary javascript in a user's browser. A related issue could expose information on a user's options page without requiring login.

Discovery 2018-01-20
Entry 2018-02-08
mailman

< 2.1.26

mailman-with-htdig

< 2.1.26

ja-mailman

le 2.1.14.j7_3,1

https://www.mail-archive.com/mailman-users@python.org/msg70478.html
CVE-2018-5950