Description
A vulnerability was detected in Mage AI up to 0.9.79. This impacts the function useMutation of the file mage_ai/frontend/components/Sessions/SignForm/index.tsx of the component Sign-in Flow. Performing a manipulation of the argument query.redirect_url results in cross site scripting. Remote exploitation of the attack is possible. The exploit is now public and may be used. The vendor was contacted early about this disclosure but did not respond in any way.
Published: 2026-06-06
Score: 5.3 Medium
EPSS: n/a
KEV: No
Impact: n/a
Action: n/a
AI Analysis

Impact

A vulnerability exists in Mage AI up to version 0.9.79 in the Sign‑in Flow component. The useMutation function in mage_ai/frontend/components/Sessions/SignForm/index.tsx allows an attacker to manipulate the query.redirect_url parameter, which is rendered without proper sanitization, leading to cross‑site scripting (XSS). This flaw enables a remote attacker to inject arbitrary JavaScript that will run in the context of a victim’s browser when they follow the forged redirect_url.

Affected Systems

All installations of Mage AI that are running a version earlier than or equal to 0.9.79 are affected. The vulnerability resides in the front‑end component accessed by users attempting to sign in and is not limited to specific modules beyond the Sign‑in Flow. The vendor is Mage AI and no other products are listed.

Risk and Exploitability

The CVSS base score of 5.3 indicates a medium severity vulnerability. The EPSS score is not available, yet the exploit is publicly disclosed and can be performed remotely by sending a crafted redirect_url URL in a sign‑in request. Because the flaw is an XSS, it defers to the victim’s authentication state, but any user who clicks the manipulated link or submits the form will receive the injected script, potentially allowing credential theft or session hijacking. The vulnerability is not in CISA’s KEV catalog, but its public availability and lack of vendor response increase the likelihood that attackers will target exposed Mage AI instances.

Generated by OpenCVE AI on June 6, 2026 at 17:20 UTC.

Remediation

No vendor fix or workaround currently provided.

OpenCVE Recommended Actions

  • Upgrade Mage AI to a version beyond 0.9.79 once a vendor patch becomes available.
  • Restrict the redirect_url query parameter to only trusted URLs or validate its content on the server side to prevent injection of scripts.
  • Implement strict input sanitization for redirect_url and any user‑supplied values rendered in the front‑end, and consider a Content Security Policy to mitigate the impact of any accidental exposure.

Generated by OpenCVE AI on June 6, 2026 at 17:20 UTC.

Tracking

Sign in to view the affected projects.

Advisories

No advisories yet.

History

Sat, 06 Jun 2026 16:15:00 +0000

Type Values Removed Values Added
Description A vulnerability was detected in Mage AI up to 0.9.79. This impacts the function useMutation of the file mage_ai/frontend/components/Sessions/SignForm/index.tsx of the component Sign-in Flow. Performing a manipulation of the argument query.redirect_url results in cross site scripting. Remote exploitation of the attack is possible. The exploit is now public and may be used. The vendor was contacted early about this disclosure but did not respond in any way.
Title Mage AI Sign-in Flow index.tsx useMutation cross site scripting
First Time appeared Mage Ai
Mage Ai mage Ai
Weaknesses CWE-79
CWE-94
CPEs cpe:2.3:a:mage_ai:mage_ai:*:*:*:*:*:*:*:*
Vendors & Products Mage Ai
Mage Ai mage Ai
References
Metrics cvssV2_0

{'score': 5, 'vector': 'AV:N/AC:L/Au:N/C:N/I:P/A:N/E:POC/RL:ND/RC:UR'}

cvssV3_0

{'score': 4.3, 'vector': 'CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N/E:P/RL:X/RC:R'}

cvssV3_1

{'score': 4.3, 'vector': 'CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N/E:P/RL:X/RC:R'}

cvssV4_0

{'score': 5.3, 'vector': 'CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:P/VC:N/VI:L/VA:N/SC:N/SI:N/SA:N/E:P'}

Subscriptions

Mage Ai Mage Ai
cve-icon MITRE

Status: PUBLISHED

Assigner: VulDB

Published:

Updated: 2026-06-06T15:45:07.089Z

Reserved: 2026-06-05T22:11:12.242Z

Link: CVE-2026-11436

cve-icon Vulnrichment

No data.

cve-icon NVD

Status : Received

Published: 2026-06-06T16:16:55.650

Modified: 2026-06-06T16:16:55.650

Link: CVE-2026-11436

cve-icon Redhat

No data.

cve-icon OpenCVE Enrichment

Updated: 2026-06-06T17:30:26Z

Weaknesses