CVE-2025-25296

Name of the Vulnerable Software and Affected Versions: Label Studio versions prior to 1.16.0

Description: The issue allows injection of arbitrary HTML through a GET request with an appropriately crafted label config query parameter at the /projects/upload-example endpoint. This enables Cross-Site Scripting (XSS) by rendering user-provided HTML content without proper sanitization. Although the application has a Content Security Policy (CSP), it is ineffective in preventing script execution because it is set in report-only mode. The vulnerability can be exploited by getting victims to visit a maliciously crafted URL, potentially allowing theft of sensitive data, session hijacking, or other malicious actions.

Recommendations: For versions prior to 1.16.0, update to version 1.16.0 or later to resolve the issue. As a temporary workaround, consider enabling the Content Security Policy in enforcement mode instead of report-only mode to actively block unauthorized script execution. Restrict access to the /projects/upload-example endpoint to minimize the risk of exploitation. Avoid using the label config query parameter in the affected API endpoint until the issue is resolved.