CVE-2026-44897 | lepture mistune up to 3.2.0 Python Markdown Parser HTMLRenderer.heading ID cross site scripting (GHSA-v87v-83h2-53w7)

A vulnerability has been found in lepture mistune up to 3.2.0 and classified as problematic. This issue affects the function HTMLRenderer.heading of the component Python Markdown Parser. This manipulation of the argument ID causes cross site scripting.

The identification of this vulnerability is CVE-2026-44897. It is possible to initiate the attack remotely. There is no exploit available.

The affected component should be upgraded.VulDB Recent EntriesRead More