VYPR

Mistune

by Authlib

pypi: mistune

Source repositories

CVEs (7)

  • CVE-2026-33079HigMay 6, 2026
    risk 0.50cvss epss 0.00

    In versions 3.0.0a1 through 3.2.0 of Mistune, there is a ReDoS (Regular Expression Denial of Service) vulnerability in `LINK_TITLE_RE` that allows an attacker who can supply Markdown for parsing to cause denial of service. The regular expression used for parsing link titles…

  • CVE-2026-44898MedMay 26, 2026
    risk 0.33cvss 6.1epss 0.00

    Mistune is a Python Markdown parser with renderers and plugins. Prior to 3.2.1, render_toc_ul() builds a table-of-contents tree from a list of (level, id, text) tuples. Both the id value (used as href="#") and the text value (used as the visible link label) are inserted…

  • CVE-2026-44897MedMay 26, 2026
    risk 0.33cvss 6.1epss 0.00

    Mistune is a Python Markdown parser with renderers and plugins. Prior to 3.2.1, HTMLRenderer.heading() builds the opening tag by string-concatenating the id attribute value directly into the HTML — with no call to escape(), safe_entity(), or any other sanitisation…

  • CVE-2026-44896MedMay 26, 2026
    risk 0.33cvss 6.1epss 0.00

    Mistune is a Python Markdown parser with renderers and plugins. In 3.2.0 and earlier, in src/mistune/directives/image.py, the render_figure() function concatenates figclass and figwidth options directly into HTML attributes without escaping. This allows attribute injection and…

  • CVE-2026-44708MedMay 26, 2026
    risk 0.33cvss 6.1epss 0.00

    Mistune is a Python Markdown parser with renderers and plugins. Prior to 3.2.1, the mistune math plugin renders inline math ($...$) and block math ($$...$$) by concatenating the raw user-supplied content directly into the HTML output without any HTML escaping. This occurs even…

  • CVE-2026-44899MedMay 26, 2026
    risk 0.24cvss 4.7epss 0.00

    Mistune is a Python Markdown parser with renderers and plugins. Prior to 3.2.1, the Image directive plugin validates the :width: and :height: options with a regex compiled as _num_re = re.compile(r"^\d+(?:\.\d*)?"). When the validated value is not a plain integer,…

  • CVE-2026-33441May 6, 2026
    risk 0.00cvss epss

    Rejected reason: This CVE is a duplicate of another CVE: CVE-2026-33079.