Description
Directory traversal vulnerability in GNU Mailman before 2.1.20, when not using a static alias, allows remote attackers to execute arbitrary files via a .. (dot dot) in a list name.
Remediation
References
Related Vulnerabilities
Magento Unrestricted Upload of File with Dangerous Type Vulnerability (CVE-2019-8093)
PostgreSQL NULL Pointer Dereference Vulnerability (CVE-2016-5423)
PHP Other Vulnerability (CVE-2003-0249)
WordPress Plugin WP Doctor Potential Malicious Code (1.7)
YetiForce CRM Improper Input Validation Vulnerability (CVE-2021-4117)