lepture/mistune v3.2.1 HTML Escaping and XML Processing Vulnerabilities

github.com 2026-05-27翻訳準備中…中国語で表示中中国語 →English →

Security AdvisoryHighlepture/mistune

Affected:

lepture/mistune < 3.2.1

Fixed in:

3.2.1

参照 CVE: CVE-2026-44898 · 6.1 CVE-2026-44897 · 6.1 CVE-2026-44708 · 6.1 CVE-2026-44899 · 4.7

文章内图片已隐藏以节省流量 · 升级 Pro 后可见图片及离线存档

本文由本平台从 github.com 自动抓取，经 LLM 流水线清洗、双语翻译。版权归原作者。查看原文。

このソースからの他の記事

Apache Airflow SFTPHook retrieve_directory Path Traversal Vulnerability Fix 2026-06-17 Real ASGI Middleware Auth Bypass Vulnerability in v1.1.x and Fix 2026-06-17 Backpropagate v1.1.x Web UI Authentication Bypass and Authorization Failure 2026-06-17 Carrierwave Content-Type Denylist Regex Injection Bypass and Fix 2026-06-17 CarrierWave denylist bypass via Unescaped Regex Metacharacters PoC 2026-06-17

离线存档

离线截图 & PDF 为 Pro 专属