Description
phpList before 3.5.4 allows XSS via /lists/admin/user.php and /lists/admin/users.php.
Remediation
References
Related Vulnerabilities
WordPress Plugin Lightbox Multiple Unspecified Vulnerabilities (2.0.7)
Apache Traffic Server Improper Input Validation Vulnerability (CVE-2021-37150)
Atlassian Jira Missing Authorization Vulnerability (CVE-2019-3399)
WordPress Plugin Chained Quiz SQL Injection (1.0.8)
Oracle Database Server CVE-2011-2242 Vulnerability (CVE-2011-2242)