A Cross Site Scripting flaw exists in the Kimi AI v1.0 web interface's 'Preview' feature; when users switch to the Preview tab to view AI‑generated code, the application fails to sanitize or encode the content, and any injected HTML or JavaScript is rendered directly into the DOM. This flaw enables an attacker to cause arbitrary JavaScript code to execute within the victim's browser session, potentially allowing the attacker to steal session cookies, redirect the user, or perform actions on behalf of the victim without their knowledge.

This vulnerability impacts the Kimi AI web interface, version 1.0, as distributed by MGTx2. The issue is confined to the Preview component that displays AI‑generated code; no other product versions or components are currently documented as affected.

Risk and exploitability: The CVSS score is 6.3, indicating a moderate severity, and the EPSS score is unavailable. The vulnerability is not listed in the CISA KEV catalog, so an exact exploitation probability cannot be derived from public metrics. Nonetheless, the XSS vulnerability is readily exploitable by any user who triggers the Preview tab, requiring only that the attacker inject malicious content through the AI model output. The attack vector is client‑side, and the potential consequence includes arbitrary script execution, session hijack, or manipulation of the victim's browser state. Given the ease of exploitation and the lack of required privileged access, this flaw poses a moderate risk to anyone using the affected system.