Get a demo
100% Signal 0% Noise Invicti Logo - The Largest Dynamic Application Security Solutions Provider In The World Get a demo
Mailman Improper Restriction of Excessive Authentication Attempts Vulnerability - CVE-2021-42096 - Vulnerability Database
Mailman

Mailman Improper Restriction of Excessive Authentication Attempts Vulnerability - CVE-2021-42096

Medium
Reference: CVE-2021-42096
NVD Link: https://nvd.nist.gov/vuln/detail/CVE-2021-42096
Title: Mailman Improper Restriction of Excessive Authentication Attempts Vulnerability
Overview:

GNU Mailman before 2.1.35 may allow remote Privilege Escalation. A certain csrf_token value is derived from the admin password and may be useful in conducting a brute-force attack against that password.