Description /options/mailman in GNU Mailman before 2.1.31 allows Arbitrary Content Injection. Remediation References CVE-2020-12108 Related Vulnerabilities WordPress Plugin WordPress Landing Pages Remote Code Execution (1.9.0) WordPress Plugin WP AutoComplete Search SQL Injection (1.0.4) WordPress Plugin WP Server Health Stats Cross-Site Scripting (1.6.10) Zenphoto Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2015-5593) Moodle Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2012-3393) Severity Medium Classification CVE-2020-12108 CWE-138 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N Tags Missing Update Known Vulnerabilities