Lucene search
Veracode Vulnerability DatabaseVERACODE:28240HistoryDec 06, 2020 - 3:35 a.m.
Content Injection
2020-12-0603:35:45
Veracode Vulnerability Database
sca.analysiscenter.veracode.com
9
gnu mailman
content injection
private archive
EPSS
0.009
Percentile
83.2%
GNU Mailman is vulnerable to content injection. An attacker is able to inject arbitrary content into the application via the Cgi/private.py private archive login page.
References
lists.opensuse.org/opensuse-security-announce/2020-10/msg00047.html
lists.opensuse.org/opensuse-security-announce/2020-10/msg00063.html
bugs.launchpad.net/mailman/+bug/1877379
lists.debian.org/debian-lts-announce/2020/06/msg00036.html
lists.debian.org/debian-lts-announce/2020/07/msg00007.html
security-tracker.debian.org/tracker/CVE-2020-15011
usn.ubuntu.com/4406-1/
www.debian.org/security/2021/dsa-4991
Related
nessus
nessus
Ubuntu 16.04 LTS / 18.04 LTS : Mailman vulnerability (USN-4406-1)
2020-06-30 00:00:00
Debian DLA-2265-1 : mailman security update
2020-07-01 00:00:00
SUSE SLES11 Security Update : mailman (SUSE-SU-2020:14423-1)
2021-06-10 00:00:00
osv
osv
mailman - security update
2020-06-30 00:00:00
mailman - security update
2020-07-10 00:00:00
Moderate: mailman:2.1 security update
2021-05-18 06:00:19
openvas
openvas
Ubuntu: Security Advisory (USN-4406-1)
2020-06-30 00:00:00
Mailman < 2.1.33 Content Injection Vulnerability
2020-06-26 00:00:00
SUSE: Security Advisory (SUSE-SU-2020:14423-1)
2021-06-09 00:00:00
redhatcve
redhatcve
CVE-2020-15011
2020-06-24 17:51:40
debian
debian
[SECURITY] [DLA 2265-1] mailman security update
2020-06-30 09:52:35
[SECURITY] [DLA 2276-1] mailman security update
2020-07-10 19:59:32
[SECURITY] [DSA 4991-1] mailman security update
2021-10-22 18:24:25
cve
cve
CVE-2020-15011
2020-06-24 12:15:10
prion
prion
Code injection
2020-06-24 12:15:00
ubuntu
ubuntu
Mailman vulnerability
2020-06-29 00:00:00
Mailman vulnerabilities
2021-11-01 00:00:00
ubuntucve
ubuntucve
CVE-2020-15011
2020-06-24 00:00:00
debiancve
debiancve
CVE-2020-15011
2020-06-24 12:15:10
cvelist
cvelist
CVE-2020-15011
2020-06-24 11:34:56
nvd
nvd
CVE-2020-15011
2020-06-24 12:15:10
rocky
rocky
mailman:2.1 security update
2021-05-18 06:00:19
almalinux
almalinux
Moderate: mailman:2.1 security update
2021-05-18 06:00:19
oraclelinux
oraclelinux
mailman:2.1 security update
2021-05-25 00:00:00
redhat
redhat
(RHSA-2021:1751) Moderate: mailman:2.1 security update
2021-05-18 06:00:19
mageia
mageia
Updated mailman packages fix security vulnerability
2020-07-05 11:46:44
suse
suse
Recommended update for mailman (moderate)
2020-10-27 00:00:00
Recommended update for mailman (moderate)
2020-10-22 00:00:00
rosalinux
rosalinux
Advisory ROSA-SA-2021-1913
2021-07-02 17:27:17