Description
OpenSift is an AI study tool that sifts through large datasets using semantic search and generative AI. Versions 1.1.2-alpha and below render untrusted user/model content in chat tool UI surfaces using unsafe HTML interpolation patterns, leading to XSS. Stored content can execute JavaScript when later viewed in authenticated sessions. An attacker who can influence stored study/quiz/flashcard content could trigger script execution in a victim’s browser, potentially performing actions as that user in the local app session. This issue has been fixed in version 1.1.3-alpha.
Published: 2026-02-20
Score: 8.9 High
EPSS: < 1% Very Low
KEV: No
Impact: Persistent Cross‑Site Scripting (XSS) Executing JavaScript in the user's browser
Action: Patch Now
AI Analysis

Impact

OpenSift’s chat interface renders stored user or model content using unsafe HTML interpolation. The flaw allows an attacker who can insert data into study, quiz, or flashcard items to embed malicious scripts that are executed later when another authenticated user views that content. The vulnerability is a stored XSS that can lead to arbitrary code execution inside the victim’s browser session, potentially letting the attacker perform actions on behalf of the user. The weakness aligns with CWE‑116 (Improper Encoding) and CWE‑79 (Cross‑Site Scripting).

Affected Systems

OpenSift’s AI study tool is affected in all releases up to and including 1.1.2‑alpha. The problem has been corrected in version 1.1.3‑alpha and later. Users running earlier versions should treat the application as vulnerable whenever they store or display untrusted content in the chat UI.

Risk and Exploitability

The issue carries a CVSS score of 8.9, indicating high severity, while the EPSS score is below 1 %, suggesting a low probability of widespread exploitation at the time of analysis. It is not listed in CISA’s KEV catalog. The attack requires the attacker to supply malicious content that is stored by the system and then viewed by a victim during an authenticated session. Once the payload is rendered, it runs with the privileges of the victim, allowing the attacker to manipulate the local app session and potentially exfiltrate data or perform unauthorized actions.

Generated by OpenCVE AI on April 17, 2026 at 16:57 UTC.

Remediation

No vendor fix or workaround currently provided.

OpenCVE Recommended Actions

  • Upgrade OpenSift to version 1.1.3‑alpha or later to apply the vendor‑provided fix.
  • If an upgrade is not immediately possible, apply input sanitization or HTML escaping to study, quiz, and flashcard content before it is rendered in the chat UI.
  • Audit any existing stored content for embedded scripts and remove or neutralize them.

Generated by OpenCVE AI on April 17, 2026 at 16:57 UTC.

Tracking

Sign in to view the affected projects.

Advisories

No advisories yet.

History

Wed, 25 Feb 2026 22:15:00 +0000

Type Values Removed Values Added
Metrics ssvc

{'options': {'Automatable': 'no', 'Exploitation': 'none', 'Technical Impact': 'partial'}, 'version': '2.0.3'}

Mon, 23 Feb 2026 21:00:00 +0000

Type Values Removed Values Added
CPEs cpe:2.3:a:opensift:opensift:*:*:*:*:*:python:*:*

Mon, 23 Feb 2026 15:00:00 +0000

Type Values Removed Values Added
First Time appeared Opensift
Opensift opensift
Vendors & Products Opensift
Opensift opensift

Sat, 21 Feb 2026 00:00:00 +0000

Type Values Removed Values Added
Description OpenSift is an AI study tool that sifts through large datasets using semantic search and generative AI. Versions 1.1.2-alpha and below render untrusted user/model content in chat tool UI surfaces using unsafe HTML interpolation patterns, leading to XSS. Stored content can execute JavaScript when later viewed in authenticated sessions. An attacker who can influence stored study/quiz/flashcard content could trigger script execution in a victim’s browser, potentially performing actions as that user in the local app session. This issue has been fixed in version 1.1.3-alpha.
Title OpenSift: Persistent XSS Chat Tool Rendering
Weaknesses CWE-116
CWE-79
References
Metrics cvssV3_1

{'score': 8.9, 'vector': 'CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:H/I:H/A:L'}

Subscriptions

Opensift Opensift
cve-icon MITRE

Status: PUBLISHED

Assigner: GitHub_M

Published:

Updated: 2026-02-25T21:23:38.098Z

Reserved: 2026-02-18T00:18:53.963Z

Link: CVE-2026-27169

cve-icon Vulnrichment

Updated: 2026-02-25T21:23:33.293Z

cve-icon NVD

Status : Analyzed

Published: 2026-02-21T00:16:16.810

Modified: 2026-02-23T20:50:36.870

Link: CVE-2026-27169

cve-icon Redhat

No data.

cve-icon OpenCVE Enrichment

Updated: 2026-04-17T17:00:10Z

Weaknesses