무슨 일이 있었나
kortix-ai/suna 버전 0.8.38까지의 약점은 apps/frontend/src/app/auth/page.tsx(인증 엔드포인트)의 router.replace/router.push 함수에서 returnURL 인수의 조작을 통한 크로스 사이트
왜 중요한가
Suna is an open-source agentic AI platform. A reflected XSS in the auth endpoint can be used to hijack authenticated user sessions, redirect users to attacker-controlled pages after login, or inject malicious scripts into the agent management interface — enabling session theft that could be leveraged to take over AI agent configurations or exfiltrate data processed by agents.
공격 경로
Attacker crafts a malicious URL containing a weaponised returnURL parameter and entices an authenticated user to visit it, causing script execution in the victim's browser within the Suna auth context.
영향받는 시스템
kortix-ai/suna ≤ 0.8.38
완화 방안
Upgrade suna to a version beyond 0.8.38. NVD: https://nvd.nist.gov/vuln/detail/CVE-2026-12811