{"dataType": "CVE_RECORD", "dataVersion": "5.2", "cveMetadata": {"cveId": "CVE-2026-28348", "assignerOrgId": "a0819718-46f1-4df5-94e2-005712e83aaa", "state": "PUBLISHED", "assignerShortName": "GitHub_M", "dateReserved": "2026-02-26T18:38:13.890Z", "datePublished": "2026-03-05T19:49:26.385Z", "dateUpdated": "2026-03-06T17:55:36.273Z"}, "containers": {"cna": {"title": "lxml_html_clean: CSS @import Filter Bypass via Unicode Escapes", "problemTypes": [{"descriptions": [{"cweId": "CWE-116", "lang": "en", "description": "CWE-116: Improper Encoding or Escaping of Output", "type": "CWE"}]}], "metrics": [{"cvssV3_1": {"attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "NONE", "baseScore": 6.1, "baseSeverity": "MEDIUM", "confidentialityImpact": "LOW", "integrityImpact": "LOW", "privilegesRequired": "NONE", "scope": "CHANGED", "userInteraction": "REQUIRED", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N", "version": "3.1"}}], "references": [{"name": "https://github.com/fedora-python/lxml_html_clean/security/advisories/GHSA-hw26-mmpg-fqfg", "tags": ["x_refsource_CONFIRM"], "url": "https://github.com/fedora-python/lxml_html_clean/security/advisories/GHSA-hw26-mmpg-fqfg"}, {"name": "https://github.com/fedora-python/lxml_html_clean/commit/2ef732667ddbc74ea59847bcf24b75809aaeed3b", "tags": ["x_refsource_MISC"], "url": "https://github.com/fedora-python/lxml_html_clean/commit/2ef732667ddbc74ea59847bcf24b75809aaeed3b"}], "affected": [{"vendor": "fedora-python", "product": "lxml_html_clean", "versions": [{"version": "< 0.4.4", "status": "affected"}]}], "providerMetadata": {"orgId": "a0819718-46f1-4df5-94e2-005712e83aaa", "shortName": "GitHub_M", "dateUpdated": "2026-03-05T19:49:26.385Z"}, "descriptions": [{"lang": "en", "value": "lxml_html_clean is a project for HTML cleaning functionalities copied from `lxml.html.clean`. Prior to version 0.4.4, the _has_sneaky_javascript() method strips backslashes before checking for dangerous CSS keywords. This causes CSS Unicode escape sequences to bypass the @import and expression() filters, allowing external CSS loading or XSS in older browsers. This issue has been patched in version 0.4.4."}], "source": {"advisory": "GHSA-hw26-mmpg-fqfg", "discovery": "UNKNOWN"}}, "adp": [{"references": [{"url": "https://github.com/fedora-python/lxml_html_clean/security/advisories/GHSA-hw26-mmpg-fqfg", "tags": ["exploit"]}], "metrics": [{"other": {"type": "ssvc", "content": {"timestamp": "2026-03-06T17:55:33.114241Z", "id": "CVE-2026-28348", "options": [{"Exploitation": "poc"}, {"Automatable": "no"}, {"Technical Impact": "partial"}], "role": "CISA Coordinator", "version": "2.0.3"}}}], "title": "CISA ADP Vulnrichment", "providerMetadata": {"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "shortName": "CISA-ADP", "dateUpdated": "2026-03-06T17:55:36.273Z"}}]}}

{"dataType": "CVE_RECORD", "containers": {"adp": [{"title": "CISA ADP Vulnrichment", "metrics": [{"other": {"type": "ssvc", "content": {"id": "CVE-2026-28348", "role": "CISA Coordinator", "options": [{"Exploitation": "poc"}, {"Automatable": "no"}, {"Technical Impact": "partial"}], "version": "2.0.3", "timestamp": "2026-03-06T17:55:33.114241Z"}}}], "references": [{"url": "https://github.com/fedora-python/lxml_html_clean/security/advisories/GHSA-hw26-mmpg-fqfg", "tags": ["exploit"]}], "providerMetadata": {"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "shortName": "CISA-ADP", "dateUpdated": "2026-03-06T17:55:26.589Z"}}], "cna": {"title": "lxml_html_clean: CSS @import Filter Bypass via Unicode Escapes", "source": {"advisory": "GHSA-hw26-mmpg-fqfg", "discovery": "UNKNOWN"}, "metrics": [{"cvssV3_1": {"scope": "CHANGED", "version": "3.1", "baseScore": 6.1, "attackVector": "NETWORK", "baseSeverity": "MEDIUM", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N", "integrityImpact": "LOW", "userInteraction": "REQUIRED", "attackComplexity": "LOW", "availabilityImpact": "NONE", "privilegesRequired": "NONE", "confidentialityImpact": "LOW"}}], "affected": [{"vendor": "fedora-python", "product": "lxml_html_clean", "versions": [{"status": "affected", "version": "< 0.4.4"}]}], "references": [{"url": "https://github.com/fedora-python/lxml_html_clean/security/advisories/GHSA-hw26-mmpg-fqfg", "name": "https://github.com/fedora-python/lxml_html_clean/security/advisories/GHSA-hw26-mmpg-fqfg", "tags": ["x_refsource_CONFIRM"]}, {"url": "https://github.com/fedora-python/lxml_html_clean/commit/2ef732667ddbc74ea59847bcf24b75809aaeed3b", "name": "https://github.com/fedora-python/lxml_html_clean/commit/2ef732667ddbc74ea59847bcf24b75809aaeed3b", "tags": ["x_refsource_MISC"]}], "descriptions": [{"lang": "en", "value": "lxml_html_clean is a project for HTML cleaning functionalities copied from `lxml.html.clean`. Prior to version 0.4.4, the _has_sneaky_javascript() method strips backslashes before checking for dangerous CSS keywords. This causes CSS Unicode escape sequences to bypass the @import and expression() filters, allowing external CSS loading or XSS in older browsers. This issue has been patched in version 0.4.4."}], "problemTypes": [{"descriptions": [{"lang": "en", "type": "CWE", "cweId": "CWE-116", "description": "CWE-116: Improper Encoding or Escaping of Output"}]}], "providerMetadata": {"orgId": "a0819718-46f1-4df5-94e2-005712e83aaa", "shortName": "GitHub_M", "dateUpdated": "2026-03-05T19:49:26.385Z"}}}, "cveMetadata": {"cveId": "CVE-2026-28348", "state": "PUBLISHED", "dateUpdated": "2026-03-06T17:55:36.273Z", "dateReserved": "2026-02-26T18:38:13.890Z", "assignerOrgId": "a0819718-46f1-4df5-94e2-005712e83aaa", "datePublished": "2026-03-05T19:49:26.385Z", "assignerShortName": "GitHub_M"}, "dataVersion": "5.2"}

{"configurations": [{"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:a:fedoralovespython:lxml_html_clean:*:*:*:*:*:python:*:*", "matchCriteriaId": "A0BBE70C-C635-4143-83FD-87D7D95B37DD", "versionEndExcluding": "0.4.4", "vulnerable": true}], "negate": false, "operator": "OR"}]}], "cveTags": [], "descriptions": [{"lang": "en", "value": "lxml_html_clean is a project for HTML cleaning functionalities copied from `lxml.html.clean`. Prior to version 0.4.4, the _has_sneaky_javascript() method strips backslashes before checking for dangerous CSS keywords. This causes CSS Unicode escape sequences to bypass the @import and expression() filters, allowing external CSS loading or XSS in older browsers. This issue has been patched in version 0.4.4."}, {"lang": "es", "value": "lxml_html_clean es un proyecto para funcionalidades de limpieza de HTML copiado de 'lxml.html.clean'. Antes de la versi\u00f3n 0.4.4, el m\u00e9todo _has_sneaky_javascript() elimina las barras invertidas antes de verificar palabras clave CSS peligrosas. Esto provoca que las secuencias de escape Unicode de CSS omitan los filtros @import y expression(), permitiendo la carga externa de CSS o XSS en navegadores antiguos. Este problema ha sido parcheado en la versi\u00f3n 0.4.4."}], "id": "CVE-2026-28348", "lastModified": "2026-03-09T20:55:16.367", "metrics": {"cvssMetricV31": [{"cvssData": {"attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "NONE", "baseScore": 6.1, "baseSeverity": "MEDIUM", "confidentialityImpact": "LOW", "integrityImpact": "LOW", "privilegesRequired": "NONE", "scope": "CHANGED", "userInteraction": "REQUIRED", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N", "version": "3.1"}, "exploitabilityScore": 2.8, "impactScore": 2.7, "source": "security-advisories@github.com", "type": "Secondary"}]}, "published": "2026-03-05T20:16:16.180", "references": [{"source": "security-advisories@github.com", "tags": ["Patch"], "url": "https://github.com/fedora-python/lxml_html_clean/commit/2ef732667ddbc74ea59847bcf24b75809aaeed3b"}, {"source": "security-advisories@github.com", "tags": ["Exploit", "Vendor Advisory"], "url": "https://github.com/fedora-python/lxml_html_clean/security/advisories/GHSA-hw26-mmpg-fqfg"}, {"source": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "tags": ["Exploit", "Vendor Advisory"], "url": "https://github.com/fedora-python/lxml_html_clean/security/advisories/GHSA-hw26-mmpg-fqfg"}], "sourceIdentifier": "security-advisories@github.com", "vulnStatus": "Analyzed", "weaknesses": [{"description": [{"lang": "en", "value": "CWE-116"}], "source": "security-advisories@github.com", "type": "Secondary"}]}

{}

{"affected": [{"configurations": [{"platform": null, "status": "affected", "versions": {"scheme": "semver", "value": "[0,0.4.4)"}}], "enrichment": {"confidence": 100.0, "confidence_source": "cna", "scores": [{"score": 100.0, "source": "cna"}]}, "product": "lxml_html_clean", "vendor": "fedora-python"}], "analysis": {"en": {"generated_at": "2026-04-17T12:40:25.732375+00:00", "value": {"mitigation_remediation": ["Upgrade the lxml_html_clean package to version 0.4.4 or later, as the fix removes the backslash stripping bug and properly checks for dangerous CSS patterns.", "Ensure that all projects and virtual environments that reference lxml_html_clean use the updated library, including any downstream dependencies.", "Add a secondary sanitization layer or configure the application to explicitly strip or block @import directives and CSS expressions before passing data to lxml_html_clean, providing an additional safeguard against future similar issues."], "summary": {"action": "Immediate Patch", "impact": "Cross\u2011site scripting via CSS @import bypass"}, "threat_synthesis": {"affected_systems": "Fedora\u2011Python lxml_html_clean versions prior to 0.4.4 are affected; the vulnerability is present in the library bundled with older Fedora releases or in projects that depend on the unpatched library.", "description_and_impact": "The lxml_html_clean library contained a flaw in its _has_sneaky_javascript() method that removed backslashes before checking for dangerous CSS keywords. This allowed CSS Unicode escape sequences to bypass the @import and expression() filters, meaning an attacker could load external CSS or trigger legacy XSS victims in older browsers.", "risk_and_exploitability": "The CVSS score of 6.1 indicates moderate severity while the EPSS score of less than 1% shows the likelihood of exploitation is low at this time. The vulnerability is not listed in the CISA KEV catalog. Attackers would need to supply crafted HTML content that is processed by a web application using the vulnerable library, and the exploit typically succeeds only in legacy browsers that honor the @import directive and CSS expression() feature. Because it leads to cross\u2011site scripting, it poses a confidentiality and integrity risk to users of the affected application. The confidentiality and integrity risks are inferred from the CVE description's focus on cross\u2011site scripting, as they are not explicitly listed in the original CVE text."}}}}, "created": "2026-03-06T15:01:11.658310+00:00", "updated": "2026-04-17T12:45:16.147862+00:00", "vendors": ["fedora-python", "fedora-python$PRODUCT$lxml_html_clean"]}