https://www.exploit-db.com/exploits/24389
http://www.cnnvd.org.cn/web/xxk/ldxqById.tag?CNNVD=CNNVD-200408-210

Sympa4.1.x及其早期版本的创建列表选项存在跨站脚本漏洞。远程认证用户借助描述字段注入任意web脚本或者HTML。

source: http://www.securityfocus.com/bid/10992/info

An HTML injection vulnerability is reported in Sympa. The problem occurs due to a failure of the application to properly sanitize user-supplied input data.

Unsuspecting users viewing the affected page will have attacker-supplied malicious code interpreted by their browser in the security context of the website hosting Sympa.

Attackers may potentially exploit this issue to manipulate web content or to steal cookie-based authentication credentials. It may be possible to take arbitrary actions as the victim user.

Versions 4.1, and all 4.1.x releases are reported vulnerable to this issue. 

Whatever_you_want<script>alert("Your cookie is " + document.cookie)</script>

来源:XF
名称:sympa-description-xss(17057)
链接:http://xforce.iss.net/xforce/xfdb/17057
来源:BID
名称:10992
链接:http://www.securityfocus.com/bid/10992
来源:SECUNIA
名称:12339
链接:http://secunia.com/advisories/12339
来源:BUGTRAQ
名称:20040820CrossSiteScriptingVulnerabilityinSympa
链接:http://marc.theaimsgroup.com/?l=bugtraq&m;=109312475207604&w;=2