VYPR
Medium severity6.1NVD Advisory· Published May 7, 2026· Updated May 13, 2026

CVE-2026-39826

CVE-2026-39826

Description

If a trusted template author were to write a tag containing an empty 'type' attribute or a 'type' attribute with an ASCII whitespace, the execution of the template would incorrectly escape any data passed into the block.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

3394

Patches

Vulnerability mechanics

References

4

News mentions

1