RethinkDB V2.4.3 Cross-Site Scripting (XSS) Vulnerability in Web Interface

Vulnerability Key Information Vulnerability Title: rethinkdb V2.4.3 (latest) cross-site scripting (XSS) Affected Versions: V2.4.3 (latest) Discovery Date: 2026-01-14 Discoverer: 59LAB (59lab@mchz.com.cn) Vulnerability Description: A cross-site scripting (XSS) vulnerability exists in the rethinkdb database. POC: - Create a new secondary index - The payload will not be triggered after successful creation. After clicking the delete button three times consecutively, you can observe that the JavaScript code executes successfully. Mitigation Recommendations: - To mitigate this vulnerability, adopt a defense-in-depth strategy, combining appropriate output encoding with stricter security policies. Strictly encode all data returned from SQL queries and displayed in the web interface. Data should be properly HTML-encoded based on its output context. Special characters such as , ", and ' must be safely escaped to prevent user-controlled input from being interpreted as HTML tags. Restrict dangerous URI schemes: Applications should explicitly block or sanitize dangerous URI schemes such as data, javascript, and blob when rendering content within HTML attributes or tags (e.g., iframe, img, object, embed). Only allowing trusted schemes like https is strongly recommended. Strengthen Content Security Policy (CSP): Existing CSP should be enhanced to prevent script execution from untrusted sources. Specifically: Discrete data: URIs in frame-src, child-src, object-src, and worker-src source list directives should be strictly blocked.

Goal Reached Thanks to every supporter — we hit 100%!

RethinkDB V2.4.3 Cross-Site Scripting (XSS) Vulnerability in Web Interface