CVE-2018-1000523: Improper Input Validation
(updated )
topydo is vulnerable to byte injection due to missing input validation allowing an attacker to inject arbitrary bytes to the terminal.
References
Detect and mitigate CVE-2018-1000523 with GitLab Dependency Scanning
Secure your software supply chain by verifying that all open source dependencies used in your projects contain no disclosed vulnerabilities. Learn more about Dependency Scanning →