CVE-2025-43921 – cPanel WHM GNU Mailman Unauthenticated List Creation Vulnerability

April 20, 2025

CVE ID : CVE-2025-43921

Published : April 20, 2025, 1:15 a.m. | 21 hours ago

Description : GNU Mailman 2.1.39, as bundled in cPanel (and WHM), allows unauthenticated attackers to create lists via the /mailman/create endpoint.

Severity: 5.3 | MEDIUM

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

Source: Read More

Previous ArticleCVE-2025-43928 – Infodraw Media Relay Service File Reading Vulnerability

Next Article CVE-2025-43920 – cPanel WHM Shell Command Injection Vulnerability

Node.js vs. Python for Backend: 7 Reasons C-Level Leaders Choose Node.js Talent

Handling JavaScript Event Listeners With Parameters

ChatGPT now has an agent mode

Scrum Alliance and Kanban University partner to offer new course that teaches both methodologies

Is ChatGPT down? You’re not alone. Here’s what OpenAI is saying

I found a tablet that could replace my iPad and Kindle – and it’s worth every penny

The best CRM software with email marketing in 2025: Expert tested and reviewed

This multi-port car charger can power 4 gadgets at once – and it’s surprisingly cheap

Execute Ping Commands and Get Back Structured Data in PHP

Execute Ping Commands and Get Back Structured Data in PHP

The Intersection of Agile and Accessibility – A Series on Designing for Everyone

Zero Trust & Cybersecurity Mesh: Your Org’s Survival Guide

I Made Kitty Terminal Even More Awesome by Using These 15 Customization Tips and Tweaks

I Made Kitty Terminal Even More Awesome by Using These 15 Customization Tips and Tweaks

Microsoft confirms active cyberattacks on SharePoint servers

How to Manually Check & Install Windows 11 Updates (Best Guide)

CVE-2025-43921 – cPanel WHM GNU Mailman Unauthenticated List Creation Vulnerability

UNC6148 Backdoors Fully-Patched SonicWall SMA 100 Series Devices with OVERSTEP Rootkit

3,500 Websites Hijacked to Secretly Mine Crypto Using Stealth JavaScript and WebSocket Tactics

Mozilla is so out of Pocket for shutting down one of my favorite apps

CVE-2025-53007 – Arduino ESP32 HTTP Response Splitting Vulnerability

CVE-2025-7504 – WordPress Friends Plugin PHP Object Injection Vulnerability

Strapi:Unleash the Power to Build Modern,Highly Customizable Websites with the Ultimate Headless CMS

CVE-2025-4062 – Apache Code-Projects Theater Seat Booking System Stack-Based Buffer Overflow Vulnerability

ether0: A 24B LLM Trained with Reinforcement Learning RL for Advanced Chemical Reasoning Tasks

CVE-2025-43950 – “Microsoft DPMAdirektPro DLL Hijacking Privilege Escalation Vulnerability”

Firefox Patches Multiple Vulnerabilities That Could Lead to Browser Crash

CVE-2025-43921 – cPanel WHM GNU Mailman Unauthenticated List Creation Vulnerability

Related Posts