CVE-2026-33311

MEDIUM

@dicebear/core and @dicebear/initials Vulnerable to SVG Injection via Unsanitized Options

Title source: cna

Description

DiceBear is an avatar library for designers and developers. Starting in version 5.0.0 and prior to versions 5.4.4, 6.1.4, 7.1.4, 8.0.3, and 9.4.1, SVG attribute values derived from user-supplied options (`backgroundColor`, `fontFamily`, `textColor`) were not XML-escaped before interpolation into SVG output. This could allow Cross-Site Scripting (XSS) when applications pass untrusted input to `createAvatar()` and serve the resulting SVG inline or with `Content-Type: image/svg+xml`. Starting in versions 5.4.4, 6.1.4, 7.1.4, 8.0.3, and 9.4.1, all affected SVG attribute values are properly escaped using XML entity encoding. Users should upgrade to the listed patched versions. Some mitigating factors limit vulnerability. Applications that validate input against the library's JSON Schema before passing it to `createAvatar()` are not affected. The DiceBear CLI validates input via AJV and was not vulnerable. Exploitation requires that an application passes untrusted, unvalidated external input directly as option values.

References (1)

Core 1

Core References

X_Refsource_Confirm x_refsource_confirm

https://github.com/dicebear/dicebear/security/advisories/GHSA-mr9r-mww3-v6gv

Scores

CVSS v3 4.7

EPSS 0.0018

EPSS Percentile 7.8%

Attack Vector NETWORK

CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:C/C:L/I:L/A:N

CISA SSVC

Vulnrichment

Exploitation none

Automatable no

Technical Impact partial

Details

CWE

CWE-79

Status published

Products (8)

dicebear/core 5.0.0 - 5.4.4npm

dicebear/dicebear 5.0.0 - 5.4.4

dicebear/dicebear >= 5.0.0, < 5.4.4

dicebear/dicebear >= 6.0.0, < 6.1.4

dicebear/dicebear >= 7.0.0, < 7.1.4

dicebear/dicebear >= 8.0.0, < 8.0.3

dicebear/dicebear >= 9.0.0, < 9.4.1

dicebear/initials 5.0.0 - 5.4.4npm

Published Mar 24, 2026

Tracked Since Mar 24, 2026