CVE-2026-53597

Source
https://cve.org/CVERecord?id=CVE-2026-53597
Import Source
https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2026-53597.json
JSON Data
https://api.osv.dev/v1/vulns/CVE-2026-53597
Aliases
Published
2026-07-16T14:54:55.075Z
Modified
2026-07-19T03:31:06.913190597Z
Severity
  • 8.7 (High) CVSS_V4 - CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:P/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N CVSS Calculator
Summary
Prompty: Arbitrary code execution via JavaScript frontmatter in TypeScript loader
Details

Prompty is a markdown file format (.prompty) for LLM prompts. From 2.0.0-alpha.1 until 2.0.0-beta.3, the @prompty/core TypeScript loader in runtime/typescript/packages/core/src/core/loader.ts used gray-matter without overriding executable js and javascript frontmatter engines, allowing an attacker-controlled .prompty file with ---js frontmatter to execute arbitrary JavaScript during prompt loading. This issue is fixed in version 2.0.0-beta.3.

Database specific
{
    "cwe_ids": [
        "CWE-94"
    ],
    "osv_generated_from": "https://github.com/CVEProject/cvelistV5/tree/main/cves/2026/53xxx/CVE-2026-53597.json",
    "cna_assigner": "GitHub_M"
}
References

Affected packages

Git / github.com/microsoft/prompty

Affected ranges

Type
GIT
Repo
https://github.com/microsoft/prompty
Events
Database specific
{
    "extracted_events": [
        {
            "introduced": "2.0.0-alpha.1"
        },
        {
            "fixed": "2.0.0-beta.3"
        }
    ],
    "source": [
        "AFFECTED_FIELD",
        "REFERENCES"
    ]
}

Affected versions

csharp/2.*
csharp/2.0.0-alpha.1
csharp/2.0.0-alpha.10
csharp/2.0.0-alpha.11
csharp/2.0.0-alpha.2
csharp/2.0.0-alpha.6
csharp/2.0.0-alpha.7
csharp/2.0.0-alpha.8
csharp/2.0.0-alpha.9
csharp/2.0.0-beta.1
csharp/2.0.0-beta.2
python/2.*
python/2.0.0a10
python/2.0.0a11
python/2.0.0a6
python/2.0.0a7
python/2.0.0a8
python/2.0.0a9
python/2.0.0b1
python/2.0.0b2
rust/2.*
rust/2.0.0-alpha.10
rust/2.0.0-alpha.11
rust/2.0.0-alpha.12
rust/2.0.0-alpha.8
rust/2.0.0-alpha.9
rust/2.0.0-beta.1
rust/2.0.0-beta.2
typescript/2.*
typescript/2.0.0-alpha.10
typescript/2.0.0-alpha.11
typescript/2.0.0-alpha.6
typescript/2.0.0-alpha.7
typescript/2.0.0-alpha.8
typescript/2.0.0-alpha.9
typescript/2.0.0-beta.1
typescript/2.0.0-beta.2

Database specific

source
"https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2026-53597.json"