CVE-2025-0183 – A stored XSS vulnerability in binary-husky/gpt

Q: What is the severity of CVE-2025-0183?

CVE-2025-0183 has a CVSS score of 5.4 (MEDIUM). A stored XSS vulnerability in binary-husky/gpt_academic's Latex Proof-Reading Module allows attackers to inject malicious scripts into debug_log.html files. When administrators view these debug reports, the scripts execute, potentially enabling unauthorized actions. This affects version 3.9.0 users who have the module enabled.

📋 TL;DR

A stored XSS vulnerability in binary-husky/gpt_academic's Latex Proof-Reading Module allows attackers to inject malicious scripts into debug_log.html files. When administrators view these debug reports, the scripts execute, potentially enabling unauthorized actions. This affects version 3.9.0 users who have the module enabled.

💻 Affected Systems

Products:

binary-husky/gpt_academic

Versions: version 3.9.0

Operating Systems: All platforms running the software

Default Config Vulnerable: ⚠️ Yes

Notes: Requires Latex Proof-Reading Module to be enabled and used to generate debug_log.html files.

📦 What is this software?

Gpt Academic by Binary Husky

View all CVEs affecting Gpt Academic →

⚠️ Risk & Real-World Impact

🔴

Worst Case

Admin session hijacking leading to complete system compromise, data theft, or ransomware deployment through admin privileges.

🟠

Likely Case

Session theft allowing attacker to perform unauthorized actions as admin, potentially accessing sensitive data or modifying configurations.

🟢

If Mitigated

Limited impact if proper input validation and output encoding are implemented, restricting script execution.

🌐 Internet-Facing: MEDIUM - Requires admin to access debug report, but if system is internet-accessible, attack surface exists.

🏢 Internal Only: MEDIUM - Internal attackers or compromised accounts could exploit this to escalate privileges.

🎯 Exploit Status

Public PoC: ⚠️ Yes

Weaponized: LIKELY

Unauthenticated Exploit: ✅ No

Complexity: LOW

Exploit requires ability to inject payload into debug_log.html, then admin must view the file. Public details available in huntr.com reference.

🛠️ Fix & Mitigation

✅ Official Fix

Patch Version: Version after 3.9.0 (check latest release)

Vendor Advisory: https://huntr.com/bounties/53bced90-64a9-4ca2-8f2f-282c4ce84d1f

Restart Required: No

Instructions:

1. Update to latest version of gpt_academic. 2. Verify Latex Proof-Reading Module has proper input sanitization. 3. Remove any existing debug_log.html files.

🔧 Temporary Workarounds

Disable debug logging

all

Prevent generation of debug_log.html files by disabling debug functionality in Latex Proof-Reading Module.

Modify configuration to disable debug logging in the module settings

Restrict access to debug files

linux

Block web access to debug_log.html files via web server configuration.

Add deny rule for debug_log.html in nginx/apache config

🧯 If You Can't Patch

Implement strict Content Security Policy (CSP) headers to prevent script execution from untrusted sources.
Regularly audit and sanitize debug_log.html files, removing any suspicious content.

🔍 How to Verify

Check if Vulnerable:

Check if version is 3.9.0 and Latex Proof-Reading Module generates debug_log.html files without proper input sanitization.

Check Version:

Check package version in project configuration or run: python -c "import gpt_academic; print(gpt_academic.__version__)"

Verify Fix Applied:

Test if script tags in Latex input are properly encoded in generated debug_log.html output.

📡 Detection & Monitoring

Log Indicators:

Unusual script tags or JavaScript in debug_log.html files
Admin accessing debug reports with suspicious parameters

Network Indicators:

HTTP requests to debug_log.html with encoded payloads

SIEM Query:

source="web_logs" AND uri="*debug_log.html*" AND (content="<script>" OR content="javascript:")

📊 Metadata

CVE ID: CVE-2025-0183

CVSS v3 Score: 5.4 (MEDIUM)

CVSS Vector: CVSS:3.0/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N

CWE: CWE-79

EPSS Score: 0.06% exploit probability (18.4th percentile)

Published: March 20, 2025

Last Updated: August 1, 2025

🔗 References

https://huntr.com/bounties/53bced90-64a9-4ca2-8f2f-282c4ce84d1f Exploit,Third Party Advisory

📤 Share & Export

📄 Export Markdown 📋 Export JSON

🔗 Related Vulnerabilities

If you're affected by CVE-2025-0183, you might also want to check these: