MEDIUM 6.5
PYSEC-2026-661
Moderate severity vulnerability that affects mailman
Details
An issue was discovered in GNU Mailman before 2.1.28. A crafted URL can cause arbitrary text to be displayed on a web page from a trusted site.
Are you affected?
Enter the version of the package you're using.
Affected packages
References
- https://nvd.nist.gov/vuln/detail/CVE-2018-13796 [ADVISORY]
- https://bugs.launchpad.net/mailman/+bug/1780874 [WEB]
- https://github.com/advisories/GHSA-xqvg-xm9m-p2c4 [ADVISORY]
- https://lists.debian.org/debian-lts-announce/2018/07/msg00034.html [WEB]
- https://security.gentoo.org/glsa/201904-10 [WEB]
- https://usn.ubuntu.com/4348-1 [WEB]
- https://www.mail-archive.com/mailman-users@python.org/msg71003.html [WEB]
- https://pypi.org/project/mailman [PACKAGE]