Medium severity6.1GHSA Advisory· Published May 26, 2026· Updated Jun 9, 2026
CVE-2026-44896
CVE-2026-44896
Description
Mistune is a Python Markdown parser with renderers and plugins. In 3.2.0 and earlier, in src/mistune/directives/image.py, the render_figure() function concatenates figclass and figwidth options directly into HTML attributes without escaping. This allows attribute injection and XSS even when HTMLRenderer(escape=True) is used, because these values bypass the inline renderer. Version 3.2.1 contains a patch.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected packages
Versions sourced from the GitHub Security Advisory.
| Package | Affected versions | Patched versions |
|---|---|---|
mistunePyPI | < 3.2.1 | 3.2.1 |
Affected products
5- osv-coords4 versionspkg:apk/chainguard/datahub-ingestion-fipspkg:apk/chainguard/kubeflow-pipelines-visualization-serverpkg:apk/wolfi/kubeflow-pipelines-visualization-serverpkg:pypi/mistune
< 1.5.0.1-r2+ 3 more
- (no CPE)range: < 1.5.0.1-r2
- (no CPE)range: < 2.16.1-r2
- (no CPE)range: < 2.16.1-r2
- (no CPE)range: <= 3.2.0
Patches
Vulnerability mechanics
References
5- github.com/advisories/GHSA-58cw-g322-p94vghsaADVISORY
- github.com/lepture/mistune/security/advisories/GHSA-58cw-g322-p94vnvdVendor AdvisoryWEB
- nvd.nist.gov/vuln/detail/CVE-2026-44896ghsaADVISORY
- github.com/lepture/mistune/commit/a3cb6e5655308797e8be021d6c7b5bab13cbace2nvdWEB
- github.com/pypa/advisory-database/tree/main/vulns/mistune/PYSEC-2026-168.yamlghsaWEB
News mentions
0No linked articles in our index yet.