CVE-2025-51464: 
Python vulnerability analysis and mitigation

Cross-site Scripting (XSS) vulnerability was discovered in aimhubio Aim version 3.28.0. The vulnerability allows remote attackers to execute arbitrary JavaScript in victims' browsers via malicious Python code submitted to the /api/reports endpoint, which is interpreted and executed by Pyodide when the report is viewed. The vulnerability was disclosed on July 22, 2025 (NVD).

The vulnerability stems from the lack of sanitization and sandbox restrictions in the Pyodide JavaScript bridge. The attack vector begins at the /api/reports API endpoint, which accepts user-supplied Python code. This code is stored in the database without sanitization via the Report model. When the report is viewed, the code is embedded within a React component, where the markdown renderer interprets code blocks with the 'aim' language tag. These blocks are then passed to the Board component for execution, where Pyodide loads and executes the Python code without any restrictions on JavaScript execution via pyodide.code.run_js(). The vulnerability has been assigned a CVSS v3.1 base score of 8.8 (HIGH) (NVD, Gecko Security).

The vulnerability allows attackers to execute arbitrary JavaScript code in victims' browsers, potentially leading to authentication cookie and token theft, sensitive information access and exfiltration, and the ability to make authenticated requests on behalf of victims (Gecko Security).

A fix has been submitted via pull request #3333 to remediate the XSS vulnerability (GitHub PR). Users should upgrade to a version newer than 3.28.0 once the fix is released.