GNU Mailman Multiple Unspecified Remote Vulnerabilities
Medium Nessus Network Monitor Plugin ID 2523
SynopsisThe remote host is vulnerable to a cross-site scripting (XSS) attack.
DescriptionThe remote host is running GNU Mailman, a web based software to manage mailing lists. There are multiple flaws such as information disclosure and cross-site scripting in the remote version of this software that may allow an attacker to steal user cookies to gain unauthorized access.
SolutionUpgrade or patch according to vendor recommendations.