Description
phpList before 3.5.3 allows XSS, with resultant privilege elevation, via lists/admin/template.php.
Remediation
References
Related Vulnerabilities
Oracle JRE CVE-2018-2799 Vulnerability (CVE-2018-2799)
WordPress Plugin Wordfence Security-Firewall & Malware Scan Cross-Site Scripting (5.1.4)
Oracle HTTP Server Improper Certificate Validation Vulnerability (CVE-2020-26184)
WordPress Plugin Quotes and Tips by BestWebSoft Cross-Site Scripting (1.19)