On 2025-04-21 12:48, Valtteri Vuorikoski wrote:
Are these vulnerabilities due to modifications made by the vendor (cPanel LLC) to their distributed version?-Valtteri
Direct quoting the CVE:
*Affected Software:* GNU Mailman 2.1.39 (bundled with cPanel/WHM)
I think that this would be a modified bundled version based on "Affected Software" specifically mentioning the GNU Mailman 2.1.39 that is specifically bundled with cPanel/WHM.
Especially if you can't reproduce it in pure MM 2.1.39.