Fix XSS on image link

lepture · lepture · commit bce17c5243fb · 2021-12-30T19:31:35.000+09:00
diff --git a/mistune/inline_parser.py b/mistune/inline_parser.py
@@ -138,7 +138,7 @@ def parse_std_link(self, m, state):
             title = ESCAPE_CHAR.sub(r'\1', title[1:-1])
 
         if line[0] == '!':
-            return 'image', link, text, title
+            return 'image', escape_url(link), text, title
 
         return self.tokenize_link(line, link, text, title, state)
 
@@ -156,7 +156,7 @@ def parse_ref_link(self, m, state):
             title = ESCAPE_CHAR.sub(r'\1', title)
 
         if line[0] == '!':
-            return 'image', link, text, title
+            return 'image', escape_url(link), text, title
 
         return self.tokenize_link(line, link, text, title, state)
 
