CVE-2003-0038: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')
(updated )
Cross-site scripting (XSS) vulnerability in options.py for Mailman 2.1 allows remote attackers to inject script or HTML into web pages via the (1) email or (2) language parameters.
References
- marc.info/?l=bugtraq&m=104342745916111
- telia.dl.sourceforge.net/sourceforge/mailman/xss-2.1.0-patch.txt
- www.debian.org/security/2004/dsa-436
- www.osvdb.org/9205
- www.securityfocus.com/bid/6677
- www.securitytracker.com/id?1005987
- exchange.xforce.ibmcloud.com/vulnerabilities/11152
- github.com/advisories/GHSA-82rm-28q9-435p
- nvd.nist.gov/vuln/detail/CVE-2003-0038
Code Behaviors & Features
Detect and mitigate CVE-2003-0038 with GitLab Dependency Scanning
Secure your software supply chain by verifying that all open source dependencies used in your projects contain no disclosed vulnerabilities. Learn more about Dependency Scanning →