CVE-2026-27169

OpenSift: Persistent XSS Chat Tool Rendering

CVSS 8.9 HIGHEPSS 0.3%CWE-116 CWE-79

Vexday Risk Score

21Baixo

Decisão SSVC (CISA)

Track

Sem sinal de exploração → monitorar

CVSS 8.9EPSS 0.3%KEV nãoPoC —Nuclei —Metasploit —Patch —

Ciclo de vida

20 fev 2026Publicada no NVD

Recomendação: Monitorar — sem sinal de exploração no momento.

OpenSift is an AI study tool that sifts through large datasets using semantic search and generative AI. Versions 1.1.2-alpha and below render untrusted user/model content in chat tool UI surfaces using unsafe HTML interpolation patterns, leading to XSS. Stored content can execute JavaScript when later viewed in authenticated sessions. An attacker who can influence stored study/quiz/flashcard content could trigger script execution in a victim’s browser, potentially performing actions as that user in the local app session. This issue has been fixed in version 1.1.3-alpha.

CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:H/I:H/A:L

Produtos afetados

OpenSift · OpenSift

Quer saber se a sua infraestrutura está exposta a isto?

Falar com a TrueHacking →

Referências

https://github.com/OpenSift/OpenSift/releases/tag/v1.1.3-alpha https://github.com/OpenSift/OpenSift/security/advisories/GHSA-qrpx-7cmv-5gv5