CVE-2025-57203

Name of the Vulnerable Software and Affected Versions MagicProject AI version 9.1

Description MagicProject AI version 9.1 is affected by a Cross-Site Scripting (XSS) issue within the chatbot generation feature accessible to authenticated admin users. The issue is located in the prompt parameter submitted to the /dashboard/user/generator/generate-stream API endpoint via a multipart/form-data POST request. Insufficient input sanitization allows attackers to inject HTML-based JavaScript payloads. These payloads are stored and rendered without proper sanitization in subsequent views, resulting in execution within other users' browsers when they access the affected content. This allows an authenticated attacker to execute arbitrary JavaScript in the context of another user, potentially leading to session hijacking, privilege escalation, data exfiltration, or administrative account takeover. The application lacks a Content Security Policy (CSP) and adequate input filtering.

Recommendations Apply proper sanitization and output encoding to the prompt parameter. Implement strong Content Security Policy (CSP) enforcement.