CVE-2025-4779
MEDIUMlunary < 1.9.24 - Unauthenticated Stored Cross-Site Scripting via v1/runs/ingest Endpoint
Title source: llmDescription
lunary-ai/lunary versions prior to 1.9.24 are vulnerable to stored cross-site scripting (XSS). An unauthenticated attacker can inject malicious JavaScript into the `v1/runs/ingest` endpoint by adding an empty `citations` field, triggering a code path where `dangerouslySetInnerHTML` is used to render attacker-controlled text. This vulnerability allows the execution of arbitrary JavaScript in the context of the user's browser, potentially leading to session hijacking, data theft, or other malicious actions.
References (2)
Core 2
Core References
Exploit, Patch, Third Party Advisory
https://huntr.com/bounties/c603b64e-5171-4eed-8983-a7f656ce2c4d
Scores
CVSS v3
6.1
EPSS
0.0042
EPSS Percentile
33.4%
Attack Vector
NETWORK
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N
CISA SSVC
Vulnrichment
Exploitation
poc
Automatable
yes
Technical Impact
total
Details
CWE
CWE-79
Status
published
Products (1)
lunary/lunary
< 1.9.24
Published
Jul 07, 2025
Tracked Since
Feb 18, 2026