CVE-2025-59053

Name of the Vulnerable Software and Affected Versions: AIRI versions 0.7.2-beta.2

Description: AIRI is a self-hosted, artificial intelligence based Grok Companion. The application processes Markdown content using the useMarkdown composable and renders it directly into the DOM using v-html. An attacker can create a card file containing malicious HTML/JavaScript, process it using the highlightTagToHtml function, and render it using v-html, leading to cross-site scripting (XSS). The project exposes the Tauri API, and the MCP plugin exposes a command execution interface function in crates/tauri-plugin-mcp/src/lib.rs. The connect server function directly passes user-supplied command and args parameters to Command::new(command).args(args) without input validation, allowing arbitrary command execution through the XSS exploit.

Recommendations: Upgrade to version 0.7.2-beta.3.