CIRCL Vulnerability-Lookup Stored Cross-Site Scripting Vulnerability

A stored Cross-Site Scripting (XSS) vulnerability has been identified in CIRCL Vulnerability-Lookup versions prior to 2.18.0. This issue arises from the application's handling of user-controlled content in comments and bundles, which was done in an unsafe manner. On the backend, the related_vulnerabilities field of bundles allowed arbitrary strings without proper format validation or sanitization. On the frontend, descriptions were converted from Markdown to HTML and injected directly into the DOM using string templates and innerHTML. This combination enabled attackers to embed crafted HTML or JavaScript payloads in comments or bundles, which would be executed in the browsers of users visiting the affected profile page.

Impact

Exploitation of this vulnerability allows for stored Cross-Site Scripting, where injected scripts are executed in the context of the user viewing the affected profile page.