Cross-site scripting vulnerability in Mailman email archiver before 2.08 allows attackers to obtain sensitive information or authentication credentials via a malicious link that is accessed by other web users.
https://exchange.xforce.ibmcloud.com/vulnerabilities/7617
http://www.securityfocus.com/bid/3602
http://www.securityfocus.com/archive/1/242839
http://www.securityfocus.com/advisories/3721
http://www.redhat.com/support/errata/RHSA-2001-170.html