GNU Mailman CVE-2016-6893 Cross Site Request Forgery Vulnerability

GNU Mailman is prone to a cross-site request forgery vulnerability because it fails to properly validate HTTP requests.

Exploiting this issue may allow a remote attacker to perform certain unauthorized actions and gain access to the affected application. This may lead to perform cross-site scripting attacks, Web cache poisoning, and other malicious activities.

GNU Mailman 2.1.x versions prior to 2.1.23 are vulnerable.


 

Privacy Statement
Copyright 2010, SecurityFocus