Description
A stored cross site scripting (XSS) vulnerability in phplist 3.5.3 allows attackers to execute arbitrary web scripts or HTML via a crafted payload entered into the "List Description" field under the "Edit A List" module.
Remediation
References
Related Vulnerabilities
WordPress Plugin Universal Star Rating Unspecified Vulnerability (1.10.3)
Magento CVE-2020-9631 Vulnerability (CVE-2020-9631)
WordPress Plugin PDF & Print by BestWebSoft Cross-Site Scripting (1.9.3)
Moodle Permissions, Privileges, and Access Controls Vulnerability (CVE-2012-4401)
WordPress Plugin Contact Form Submissions Unspecified Vulnerability (1.2)