CVE-2026-23733
published 2026-01-18CVE-2026-23733: LobeChat is an open source chat application platform. Prior to version 2.0.0-next.180, a stored Cross-Site Scripting (XSS) vulnerability in the Mermaid…
PriorityP427medium6.4CVSS 3.1
AVLACHPRHUIRSCCHILAL
EPSS
0.12%
2.4th percentile
LobeChat is an open source chat application platform. Prior to version 2.0.0-next.180, a stored Cross-Site Scripting (XSS) vulnerability in the Mermaid artifact renderer allows attackers to execute arbitrary JavaScript within the application context. This XSS can be escalated to Remote Code Execution (RCE) by leveraging the exposed `electronAPI` IPC bridge, allowing attackers to run arbitrary system commands on the victim's machine. Version 2.0.0-next.180 patches the issue.
Affected
2 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| lobehub | chat | 0 – 1.143.2 | — |
| lobehub | lobe-chat | < 2.0.0-next.180 | 2.0.0-next.180 |
Stop checking back — get the weekly exploitation signal.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
OSV
Lobe Chat affected by Cross-Site Scripting(XSS) that can escalate to Remote Code Execution(RCE)
osv·2026-01-20
CVE-2026-23733 [CRITICAL] Lobe Chat affected by Cross-Site Scripting(XSS) that can escalate to Remote Code Execution(RCE)
Lobe Chat affected by Cross-Site Scripting(XSS) that can escalate to Remote Code Execution(RCE)
### Summary
A stored Cross-Site Scripting (XSS) vulnerability in the Mermaid artifact renderer allows attackers to execute arbitrary JavaScript within the application context. This XSS can be escalated to Remote Code Execution (RCE).
### Details
The vulnerability exists in the `Renderer` component responsible for rendering Mermaid diagrams within chat artifacts.
```TypeScript
case 'application/lobe.artifacts.mermaid': {
return {content};
}
```
The `content` variable, which is derived from user or AI-generated messages, is passed directly to the `` component without any sanitization. The Mermaid library renders HTML labels (e.g., nodes defined with ["..."]) directly into the DOM. If the conten
GHSA
Lobe Chat affected by Cross-Site Scripting(XSS) that can escalate to Remote Code Execution(RCE)
ghsa·2026-01-20
CVE-2026-23733 [CRITICAL] CWE-94 Lobe Chat affected by Cross-Site Scripting(XSS) that can escalate to Remote Code Execution(RCE)
Lobe Chat affected by Cross-Site Scripting(XSS) that can escalate to Remote Code Execution(RCE)
### Summary
A stored Cross-Site Scripting (XSS) vulnerability in the Mermaid artifact renderer allows attackers to execute arbitrary JavaScript within the application context. This XSS can be escalated to Remote Code Execution (RCE).
### Details
The vulnerability exists in the `Renderer` component responsible for rendering Mermaid diagrams within chat artifacts.
```TypeScript
case 'application/lobe.artifacts.mermaid': {
return {content};
}
```
The `content` variable, which is derived from user or AI-generated messages, is passed directly to the `` component without any sanitization. The Mermaid library renders HTML labels (e.g., nodes defined with ["..."]) directly into the DOM. If the conten
No detection rules found.
No public exploits indexed.
2026-01-18
Published