CVE-2026-25516 – This CVE describes a cross-site scripting (XSS)... (How to Fix)

📋 TL;DR

This CVE describes a cross-site scripting (XSS) vulnerability in NiceGUI's ui.markdown() component. Attackers can inject malicious JavaScript through user-controlled markdown content, which gets rendered as HTML without sanitization. Applications using NiceGUI versions before 3.7.0 that render untrusted content via ui.markdown() are affected.

💻 Affected Systems

Products:

NiceGUI

Versions: All versions before 3.7.0

Operating Systems: All

Default Config Vulnerable: ⚠️ Yes

Notes: Only affects applications that render user-controlled content through ui.markdown() component.

📦 What is this software?

Nicegui by Zauberzeug

View all CVEs affecting Nicegui →

⚠️ Risk & Real-World Impact

🔴

Worst Case

Complete account takeover, session hijacking, credential theft, and client-side data exfiltration if malicious JavaScript executes in user browsers.

🟠

Likely Case

Session hijacking, defacement, or data theft from users who view attacker-controlled content.

🟢

If Mitigated

No impact if proper input sanitization or content restrictions are implemented.

🌐 Internet-Facing: HIGH

🏢 Internal Only: MEDIUM

🎯 Exploit Status

Public PoC: ✅ No

Weaponized: LIKELY

Unauthenticated Exploit: ⚠️ Yes

Complexity: LOW

XSS exploitation is well-understood; no special tools required beyond ability to inject HTML/JavaScript.

🛠️ Fix & Mitigation

✅ Official Fix

Patch Version: 3.7.0

Vendor Advisory: https://github.com/zauberzeug/nicegui/security/advisories/GHSA-v82v-c5x8-w282

Restart Required: Yes

Instructions:

1. Update NiceGUI to version 3.7.0 or later using pip: pip install nicegui>=3.7.0
2. Restart your application
3. Verify the fix by checking that ui.markdown() now sanitizes HTML

🔧 Temporary Workarounds

Manual Input Sanitization

all

Sanitize all user input before passing to ui.markdown() using HTML sanitization libraries

Disable HTML in Markdown

all

Configure markdown2 library to disable raw HTML parsing

🧯 If You Can't Patch

Implement strict content validation to reject any HTML tags in user input
Use Content Security Policy (CSP) headers to restrict script execution

🔍 How to Verify

Check if Vulnerable:

Check if your application uses NiceGUI <3.7.0 and renders user-controlled content via ui.markdown()

Check Version:

pip show nicegui | grep Version

Verify Fix Applied:

Test that HTML/JavaScript in markdown input is now properly sanitized and doesn't execute

📡 Detection & Monitoring

Log Indicators:

Unusual HTML/JavaScript patterns in user-submitted content
Multiple failed XSS attempts

Network Indicators:

Unexpected script tags in HTTP POST data
Suspicious JavaScript in markdown content

SIEM Query:

source="web_logs" AND ("<script" OR "javascript:" OR "onclick=" OR "onload=") AND path="*markdown*"

📊 Metadata

CVE ID: CVE-2026-25516

CVSS v3 Score: 6.1 (MEDIUM)

CVSS Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N

CWE: CWE-79

EPSS Score: 0.03% exploit probability (8.7th percentile)

Published: February 6, 2026

Last Updated: February 20, 2026

🔗 References

https://github.com/zauberzeug/nicegui/commit/f1f7533577875af7d23f161ed3627f73584cb561 Patch
https://github.com/zauberzeug/nicegui/security/advisories/GHSA-v82v-c5x8-w282 Exploit,Mitigation,Vendor Advisory

📤 Share & Export

📄 Export Markdown 📋 Export JSON

🔗 Related Vulnerabilities

If you're affected by CVE-2026-25516, you might also want to check these: