CVE-2018-13796: Improper Input Validation

September 11, 2018 (updated September 22, 2021)

An issue was discovered in GNU Mailman A crafted URL can cause arbitrary text to be displayed on a web page from a trusted site.

References

bugs.launchpad.net/mailman/+bug/1780874
github.com/advisories/GHSA-xqvg-xm9m-p2c4
lists.debian.org/debian-lts-announce/2018/07/msg00034.html
nvd.nist.gov/vuln/detail/CVE-2018-13796
security.gentoo.org/glsa/201904-10
usn.ubuntu.com/4348-1/
www.mail-archive.com/mailman-users@python.org/msg71003.html

Code Behaviors & Features

Detect and mitigate CVE-2018-13796 with GitLab Dependency Scanning

Secure your software supply chain by verifying that all open source dependencies used in your projects contain no disclosed vulnerabilities. Learn more about Dependency Scanning →