CVEDB API

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2026-44898

Mistune is a Python Markdown parser with renderers and plugins. Prior to 3.2.1, render_toc_ul() builds a <ul> table-of-contents tree from a list of (level, id, text) tuples. Both the id value (used as href="#<id>") and the text value (used as the visible link label) are inserted into <a> tags via a plain Python format string — with no HTML escaping applied to either value. When heading IDs are derived from user-supplied heading text (the standard use-case for readable slug anchors), an attacker can craft a heading whose text breaks out of the href="#..." attribute context, injecting arbitrary HTML tags including <script> blocks directly into the rendered TOC. This vulnerability is fixed in 3.2.1.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.0

EPSS Ranking 9.3%

CVSS Severity

CVSS v3 Score 6.1

References

Products affected by CVE-2026-44898

Mistune Project » Mistune » Version: 0.1.0

cpe:2.3:a:mistune_project:mistune:0.1.0
Mistune Project » Mistune » Version: 0.2.0

cpe:2.3:a:mistune_project:mistune:0.2.0
Mistune Project » Mistune » Version: 0.3.0

cpe:2.3:a:mistune_project:mistune:0.3.0
Mistune Project » Mistune » Version: 0.3.1

cpe:2.3:a:mistune_project:mistune:0.3.1
Mistune Project » Mistune » Version: 0.4

cpe:2.3:a:mistune_project:mistune:0.4
Mistune Project » Mistune » Version: 0.4.1

cpe:2.3:a:mistune_project:mistune:0.4.1
Mistune Project » Mistune » Version: 0.5

cpe:2.3:a:mistune_project:mistune:0.5
Mistune Project » Mistune » Version: 0.5.1

cpe:2.3:a:mistune_project:mistune:0.5.1
Mistune Project » Mistune » Version: 0.6

cpe:2.3:a:mistune_project:mistune:0.6
Mistune Project » Mistune » Version: 0.7

cpe:2.3:a:mistune_project:mistune:0.7
Mistune Project » Mistune » Version: 0.7.1

cpe:2.3:a:mistune_project:mistune:0.7.1
Mistune Project » Mistune » Version: 0.7.2

cpe:2.3:a:mistune_project:mistune:0.7.2
Mistune Project » Mistune » Version: 0.7.3

cpe:2.3:a:mistune_project:mistune:0.7.3
Mistune Project » Mistune » Version: 0.7.4

cpe:2.3:a:mistune_project:mistune:0.7.4
Mistune Project » Mistune » Version: 0.8

cpe:2.3:a:mistune_project:mistune:0.8
Mistune Project » Mistune » Version: 0.8.1

cpe:2.3:a:mistune_project:mistune:0.8.1
Mistune Project » Mistune » Version: 0.8.2

cpe:2.3:a:mistune_project:mistune:0.8.2
Mistune Project » Mistune » Version: 0.8.3

cpe:2.3:a:mistune_project:mistune:0.8.3
Mistune Project » Mistune » Version: 0.8.4

cpe:2.3:a:mistune_project:mistune:0.8.4
Mistune Project » Mistune » Version: 2.0.0

cpe:2.3:a:mistune_project:mistune:2.0.0
Mistune Project » Mistune » Version: 2.0.1

cpe:2.3:a:mistune_project:mistune:2.0.1
Mistune Project » Mistune » Version: 2.0.2

cpe:2.3:a:mistune_project:mistune:2.0.2
Mistune Project » Mistune » Version: 2.0.3

cpe:2.3:a:mistune_project:mistune:2.0.3
Mistune Project » Mistune » Version: 2.0.4

cpe:2.3:a:mistune_project:mistune:2.0.4
Mistune Project » Mistune » Version: 2.0.5

cpe:2.3:a:mistune_project:mistune:2.0.5
Mistune Project » Mistune » Version: 3.0.0

cpe:2.3:a:mistune_project:mistune:3.0.0
Mistune Project » Mistune » Version: 3.0.1

cpe:2.3:a:mistune_project:mistune:3.0.1
Mistune Project » Mistune » Version: 3.0.2

cpe:2.3:a:mistune_project:mistune:3.0.2
Mistune Project » Mistune » Version: 3.1.0

cpe:2.3:a:mistune_project:mistune:3.1.0
Mistune Project » Mistune » Version: 3.1.1

cpe:2.3:a:mistune_project:mistune:3.1.1
Mistune Project » Mistune » Version: 3.1.2

cpe:2.3:a:mistune_project:mistune:3.1.2
Mistune Project » Mistune » Version: 3.1.3

cpe:2.3:a:mistune_project:mistune:3.1.3
Mistune Project » Mistune » Version: 3.1.4

cpe:2.3:a:mistune_project:mistune:3.1.4
Mistune Project » Mistune » Version: 3.2.0

cpe:2.3:a:mistune_project:mistune:3.2.0

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2026-44898

Products

Pricing

Contact Us