MagicProject AI Cross-Site Scripting Vulnerability in Chatbot Feature for Admin Users

A Cross-Site Scripting (XSS) vulnerability has been identified in MagicProject AI version 9.1. This issue affects the chatbot generation feature, specifically for authenticated admin users. The vulnerability arises in the prompt parameter sent to the /dashboard/user/generator/generate-stream endpoint via a multipart/form-data POST request. Due to inadequate input sanitization, attackers can inject HTML-based JavaScript payloads, which are then stored and rendered without proper cleaning in subsequent views. This allows the execution of arbitrary JavaScript in the context of other users, potentially leading to session hijacking, privilege escalation, data exfiltration, or administrative account takeover. The application lacks a Content Security Policy (CSP) and sufficient input filtering to prevent such attacks.

Impact

Exploitation of this vulnerability allows authenticated attackers to inject malicious JavaScript that is executed in the browsers of users viewing the affected content, potentially leading to session hijacking, privilege escalation, data exfiltration, or takeover of administrative accounts.

Remediation

Users are advised to update to the latest version of MagicProject AI, where this vulnerability has been addressed. Instructions for updating can be found in the MagicAI documentation.