CVE-2025-43920 Information

Apr 21, 2025 cve

Description

GNU Mailman 2.1.39 as bundled in cPanel (and WHM) allows unauthenticated attackers to execute arbitrary OS commands via shell metacharacters in an email Subject line.

Reference

https://code.launchpad.net/~mailman-coders/mailman/2.1 https://github.com/0NYX-MY7H/CVE-2025-43920

Share on: