Critical · CVSS 9.9 April 16, 2026 · GitHub Advisory / NVD

0DIN AI Scanner RCE

Remote code execution via JavaScript injection in BrowserAutomation::PlaywrightService — exposes Rails secrets, database credentials, and tenant data

CVE-2026-41512 is a critical remote code execution vulnerability in 0DIN AI Scanner versions 1.0.0 through 1.4.0. The scanner's PlaywrightService builds Node.js scripts as Ruby heredoc strings and interpolates user-controlled URLs without escaping. A crafted URL closes the JavaScript string literal and appends arbitrary Node.js statements that execute via Open3.capture3 — granting full access to child_process, the process environment, and the Docker network. Any authenticated tenant member — with no special privileges — can exploit this to read SECRET_KEY_BASE, PostgreSQL credentials, OAuth secrets, and every other tenant's data. Tenant isolation is completely broken.

9.9 CVSS Score

Auth'd Access Required

RCE Impact

Patched v1.4.1

"The new AI security stack is still software — often privileged software handling credentials, API keys, model endpoints and tenant data."

— Security Point Break, May 8, 2026

Members only

Full technical analysis, attack chain, IOCs, and the defensive checklist are available to registered members — free to join.

Primary source: GitHub Security Advisory GHSA-r27j-xxgx-f5vr, April 16, 2026. CVE-2026-41512 published to NVD May 8, 2026. Patch (v1.4.1) released April 13, 2026 by the 0DIN AI team. This advisory is an independent defensive guide produced by Spectreworks AI for educational purposes only and is not affiliated with 0DIN AI or the GitHub Advisory Database.