CVE-2025-66481

Name of the Vulnerable Software and Affected Versions DeepChat versions 0.5.1 and below

Description DeepChat, an open-source AI chat platform supporting cloud models and LLMs, is susceptible to Cross-Site Scripting (XSS) attacks due to inadequate sanitization of Mermaid content. The initial security patch for MermaidArtifact.vue was insufficient and can be bypassed using unquoted HTML attributes combined with HTML entity encoding. This allows for potential Remote Code Execution on the victim's machine via the electron.ipcRenderer interface, circumventing the regex filter designed to prevent dangerous attributes. The vulnerability is exploitable through the improper handling of Mermaid content, potentially leading to malicious code execution.

Recommendations DeepChat versions 0.5.1 and below: Disable Mermaid functionality to mitigate the risk of exploitation.