Cross-site scripting (XSS) vulnerability in options.py for Mailman 2.1 allows remote attackers to inject script or HTML into web pages via the (1) email or (2) language parameters.
"https://github.com/pypa/advisory-database/blob/main/vulns/mailman/PYSEC-2026-657.yaml"