Skip to main content

FastapiAdmin CVE-2026-36728

MEDIUM
Cross-site Scripting (XSS) (CWE-79)
2026-06-09 mitre
5.4
CVSS 3.1 · NVD
Share

Severity by source

NVD PRIMARY
5.4 MEDIUM
AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N

Primary rating from NVD · only source for this CVE.

CVSS VectorNVD

CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N
Attack Vector
Network
Attack Complexity
Low
Privileges Required
Low
User Interaction
Required
Scope
Changed
Confidentiality
Low
Integrity
Low
Availability
None

Lifecycle Timeline

4
CVSS changed
Jun 09, 2026 - 22:22 NVD
6.1 (MEDIUM) 5.4 (MEDIUM)
Analysis Generated
Jun 09, 2026 - 21:30 vuln.today
CVSS changed
Jun 09, 2026 - 20:22 NVD
6.1 (MEDIUM)
CVE Published
Jun 09, 2026 - 00:00 nvd
UNKNOWN (no severity yet)

DescriptionNVD

A markdown based cross-site scripting (XSS) vulnerability in the AI assistant chat function of FastapiAdmin v2.2.0 allows attackers to execute arbitrary web scripts or HTML via injecting a crafted payload into a chat message.

AnalysisAI

Markdown-based XSS in FastapiAdmin v2.2.0's AI assistant chat function allows unauthenticated remote attackers to inject crafted markdown payloads that execute arbitrary JavaScript in a victim's browser. The Changed scope (S:C) in the CVSS vector confirms the vulnerability crosses the application trust boundary into the browser security context. A public proof-of-concept exists via the researcher disclosure repository, and no vendor-released patch has been identified at time of analysis.

Technical ContextAI

FastapiAdmin is a Python-based administrative interface framework built on FastAPI. The affected component is the AI assistant chat feature, which renders user-supplied input as markdown. CWE-79 (Improper Neutralization of Input During Web Page Generation) identifies the root cause: the markdown renderer processes user-controlled content without adequately sanitizing or escaping HTML and JavaScript constructs embedded within markdown syntax (e.g., inline HTML, javascript: URIs in link targets, or event handler attributes). The CVSS Scope:Changed value indicates the injected script escapes the application's security context and executes within the victim's browser origin, enabling session theft, credential harvesting, or DOM manipulation. The NVD CPE entry (cpe:2.3:a:n/a:n/a) is non-standard, indicating the product has not yet been formally mapped in the CPE dictionary - affected product identification relies solely on the CVE description and researcher disclosure.

RemediationAI

No vendor-released patch has been identified at time of analysis. Operators should review the researcher disclosure at https://github.com/CC-T-454455/Vulnerabilities/tree/master/fastapi-admin/vulnerability-7 and monitor the FastapiAdmin upstream repository for a security fix. As an immediate compensating control, disable the AI assistant chat function in FastapiAdmin until a patch is available - this directly eliminates the attack surface with no ambiguity. If the chat feature cannot be disabled, restrict access to the admin interface to trusted IP ranges via network-layer controls (firewall or reverse proxy allowlist), which limits the pool of potential attackers but does not fix the underlying vulnerability. Additionally, implement a Content Security Policy (CSP) header that blocks inline script execution; this can mitigate XSS impact but may break other application functionality and requires testing. Do not expose FastapiAdmin admin panels to untrusted networks without these controls in place.

Share

CVE-2026-36728 vulnerability details – vuln.today

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy