2021-11-12 20:44:11
mitre
PUBLISHED
In GNU Mailman before 2.1.36, a crafted URL to the Cgi/options.py user options page can execute arbitrary JavaScript for XSS.