Endymion Mailman Webmail vulnerabilities
3 known vulnerabilities affecting endymion/mailman_webmail.
Total CVEs
3
CISA KEV
0
Public exploits
1
Exploited in wild
0
Severity breakdown
CRITICAL1MEDIUM1LOW1
Vulnerabilities
Page 1 of 1
CVE-2001-0021P3CRITICALCVSS 10.0PoCv3.0v3.0.1+15 more2001-02-16
CVE-2001-0021 [CRITICAL] CVE-2001-0021: MailMan Webmail 3.0.25 and earlier allows remote attackers to execute arbitrary commands via shell m
MailMan Webmail 3.0.25 and earlier allows remote attackers to execute arbitrary commands via shell metacharacters in the alternate_template parameter.
nvd
CVE-2002-0417P4MEDIUMCVSS 5.0v3.0v3.0.1+29 more2002-08-12
CVE-2002-0417 [MEDIUM] CVE-2002-0417: Directory traversal vulnerability in Endymion MailMan before 3.1 allows remote attackers to read arb
Directory traversal vulnerability in Endymion MailMan before 3.1 allows remote attackers to read arbitrary files via a .. (dot dot) and a null character in the ALTERNATE_TEMPLATES parameter for various mmstdo*.cgi programs.
nvd
CVE-1999-0850P4LOWCVSS 3.6v3.0.181999-12-02
CVE-1999-0850 [LOW] CVE-1999-0850: The default permissions for Endymion MailMan allow local users to read email or modify files.
The default permissions for Endymion MailMan allow local users to read email or modify files.
nvd