CVE-2025-59053 | moeru-ai airi 0.7.2-beta.2 MarkdownRenderer.vue highlightTagToHtml cross site scripting (GHSA-9832-f8jx-hw6f)

A vulnerability identified as problematic has been detected in moeru-ai airi 0.7.2-beta.2. Affected by this issue is the function highlightTagToHtml in the library crates/tauri-plugin-mcp/src/lib.rs of the file packages/stage-ui/src/components/MarkdownRenderer.vue. This manipulation causes cross site scripting.

This vulnerability is handled as CVE-2025-59053. The attack can be initiated remotely. There is not any exploit available.

To fix this issue, it is recommended to deploy a patch.VulDB Recent EntriesRead More