Tag

Mistune

2 briefs RSS

CVE-2026-44899 Mistune Image Directive CSS Injection Vulnerability

CVE-2026-44899 is a CSS Injection vulnerability in the Mistune Image Directive, potentially allowing for malicious CSS injection if user-supplied content is not properly sanitized.

Mistune Image Directive css-injection vulnerability mistune

2r 1c 3w ago

medium advisory

Mistune Markdown Parser Denial-of-Service Vulnerability

2 rules 1 TTP

A denial-of-service vulnerability exists in Mistune version 3.2.0 due to excessive parsing and CPU consumption when processing specially crafted reference links, leading to application hangs and service unavailability.

mistune dos vulnerability

2r 1t May 6, 2026