Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1336 CNY

100%

CVE-2026-58579— RAGFlow < 0.26.3 - Stored Cross-Site Scripting via Agent Pipeline Node Name

CVSS 5.4 · Medium EPSS 0.18% · P8

Affected Version Matrix 1

VendorProductVersion RangeStatus
infiniflowragflow< 0.26.3affected
Get alerts for future matching vulnerabilitiesLog in to subscribe

I. Basic Information for CVE-2026-58579

Vulnerability Information

Have questions about the vulnerability? See if Shenlong's analysis helps!
View Shenlong Deep Dive ↗

Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.

Vulnerability Title
RAGFlow < 0.26.3 - Stored Cross-Site Scripting via Agent Pipeline Node Name
Source: NVD (National Vulnerability Database)
Vulnerability Description
RAGFlow before 0.26.3 stores an agent pipeline (DSL) node name without sanitization: the agent update endpoint normalizes the submitted DSL via normalize_dsl, which only performs JSON serialization validation and preserves the node name verbatim. The dataflow-result web UI then renders that name into the "Rerun from current step" confirmation modal via dangerouslySetInnerHTML, and the i18next configuration sets escapeValue:false, so the value is inserted into the DOM without HTML encoding. An authenticated workspace user who can create or edit an agent can inject arbitrary JavaScript that executes in the session of another workspace member who opens the dataflow result and clicks rerun, enabling session/token theft and account takeover across the user trust boundary.
Source: NVD (National Vulnerability Database)
CVSS Information
CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N
Source: NVD (National Vulnerability Database)
Vulnerability Type
在Web页面生成时对输入的转义处理不恰当(跨站脚本)
Source: NVD (National Vulnerability Database)
Vulnerability Title
InfiniFlow RAGFlow 跨站脚本漏洞
Source: CNNVD (China National Vulnerability Database)
Vulnerability Description
InfiniFlow RAGFlow是InfiniFlow组织开源的一个基于深度文档理解的开源 RAG 引擎。 InfiniFlow RAGFlow 0.26.3之前版本存在跨站脚本漏洞,该漏洞源于未对agent pipeline节点名称进行清理,导致攻击者可通过存储型跨站脚本攻击,在用户会话中注入任意JavaScript,从而窃取会话/令牌并实现账户接管。
Source: CNNVD (China National Vulnerability Database)
CVSS Information
N/A
Source: CNNVD (China National Vulnerability Database)
Vulnerability Type
N/A
Source: CNNVD (China National Vulnerability Database)

Affected Products

VendorProductAffected VersionsCPESubscribe
infiniflowragflow 0 ~ 0.26.3 -

II. Public POCs for CVE-2026-58579

#POC DescriptionSource LinkShenlong Link
AI-Generated POCPremium

No public POC found.

Login to generate AI POC

III. Intelligence Information for CVE-2026-58579

登录查看更多情报信息。

Patches & Fixes for CVE-2026-58579 (2)

Vendor Advisories for CVE-2026-58579 (1)

Proof of Concept for CVE-2026-58579 (1)

Vendor Pages for CVE-2026-58579 (1)

IV. Related Vulnerabilities

V. Comments for CVE-2026-58579

No comments yet


Leave a comment