AI Score
Confidence
High
EPSS
Percentile
27.0%
An issue was discovered in phpList through 3.5.4. An XSS vulnerability occurs within the Import Administrators section via upload of an edited text document. This also affects the Subscriber Lists section.
blog.telspace.co.za/2020/07/phplist-cve-2020-15072-cve-2020-15073.html
discuss.phplist.org/t/phplist-3-5-5-has-been-released/6377
www.phplist.org/newslist/phplist-3-5-5-release-notes/