GHSA-wpq5-3366-mqw4
Suggest an improvement- Source
- https://github.com/advisories/GHSA-wpq5-3366-mqw4
- Import Source
- https://github.com/github/advisory-database/blob/main/advisories/github-reviewed/2025/02/GHSA-wpq5-3366-mqw4/GHSA-wpq5-3366-mqw4.json
- JSON Data
- https://api.osv.dev/v1/vulns/GHSA-wpq5-3366-mqw4
- Aliases
- Published
- 2025-02-14T15:23:03Z
- Modified
- 2025-02-14T22:33:39.194776Z
- Severity
-
- 6.1 (Medium) CVSS_V3 - CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N CVSS Calculator
- Summary
- Label Studio allows Cross-Site Scripting (XSS) via GET request to `/projects/upload-example` endpoint
- Details
-
Description
Label Studio's
/projects/upload-exampleendpoint allows injection of arbitrary HTML through aGETrequest with an appropriately craftedlabel_configquery parameter. By crafting a specially formatted XML label config with inline task data containing malicious HTML/JavaScript, an attacker can achieve Cross-Site Scripting (XSS). While the application has a Content Security Policy (CSP), it is only set in report-only mode, making it ineffective at preventing script execution.The vulnerability exists because the upload-example endpoint renders user-provided HTML content without proper sanitization on a GET request. This allows attackers to inject and execute arbitrary JavaScript in victims' browsers by getting them to visit a maliciously crafted URL.
This is considered vulnerable because it enables attackers to execute JavaScript in victims' contexts, potentially allowing theft of sensitive data, session hijacking, or other malicious actions.
Steps to reproduce
- Create a malicious label config that includes an XSS payload in embedded task data:
<View><!-- {"data": {"text": "<div><img src=x onerror=eval(atob(`YWxlcnQoIlhTUyIp`))></div>"}} --><HyperText name="text" value="$text"/></View>- URL encode the payload and access the following URL:
- http://app/projects/upload-example/?label_config=%3CView%3E%3C!--%20{%22data%22:%20{%22text%22:%20%22%3Cdiv%3E%3Cimg%20src=x%20onerror=eval(atob(
YWxlcnQoIlhTUyIp))%3E%3C/div%3E%22}}%20--%3E%3CHyperText%20name=%22text%22%20value=%22$text%22/%3E%3C/View%3E
When executed, the payload causes the application to render an HTML page containing an img tag that fails to load, triggering the onerror event handler which executes base64-decoded JavaScript, demonstrating successful XSS execution in the victim's browser.
Mitigations
- Enable the Content Security Policy in enforcement mode instead of report-only mode to actively block unauthorized script execution
- Deprecate the
GETbehavior at theexample-configendpoint since it's not used
Impact
The vulnerability requires no special privileges and can be exploited by getting a victim to visit a crafted URL. The impact is high as it allows arbitrary JavaScript execution in victims' browsers, potentially exposing sensitive data or enabling account takeover through session theft.
- Database specific
{ "nvd_published_at": "2025-02-14T20:15:36Z", "github_reviewed_at": "2025-02-14T15:23:03Z", "cwe_ids": [ "CWE-79" ], "severity": "MODERATE", "github_reviewed": true }- References
Affected packages
PyPI / label-studio
Package
- Name
- label-studio
- View open source insights on deps.dev
- Purl
- pkg:pypi/label-studio
Affected ranges
- Type
- ECOSYSTEM
- Events
-
Introduced0Unknown introduced version / All previous versions are affectedFixed1.16.0