Label Studio (Python) – Support, CVEs & Health

GHSA-2mq9-hm29-8qch CVSS_V4

Label Studio is vulnerable to full account takeover by chaining Stored XSS + IDOR in User Profile via custom_hotkeys field

Published: 2026-01-12 No fix available

GHSA-6hjj-gq77-j4qw CVSS_V3

Label Studio Object Relational Mapper Leak Vulnerability in Filtering Task

Published: 2023-11-14 Fixed in: 1.9.2.post0

GHSA-6xv9-957j-qfhg CVSS_V3

Label Studio vulnerable to Cross-site Scripting if `<Choices>` or `<Labels>` are used in labeling config

Published: 2024-02-22 Fixed in: 1.11.0

GHSA-8jhr-wpcm-hh4h CVSS_V4

label-studio vulnerable to Cross-Site Scripting (Reflected) via the label_config parameter.

Published: 2025-05-15 Fixed in: 1.18.0

GHSA-cpmr-mw4j-99r7 CVSS_V3

Nginx alias path traversal allows unauthenticated attackers to read all files on /label_studio/core/

Published: 2023-03-24 Fixed in: 1.7.2

GHSA-f475-x83m-rx5m CVSS_V3

Label Studio has Hardcoded Django `SECRET_KEY` that can be Abused to Forge Session Tokens

Published: 2023-11-09 Fixed in: 1.8.2

GHSA-fq23-g58m-799r CVSS_V3

Cross-site Scripting Vulnerability on Data Import

Published: 2024-01-24 Fixed in: 1.10.1

GHSA-m238-fmcw-wh58 CVSS_V3

Label Studio allows Server-Side Request Forgery in the S3 Storage Endpoint

Published: 2025-02-14 Fixed in: 1.16.0

GHSA-p59w-9gqw-wj8r CVSS_V3

Label Studio SSRF on Import Bypassing `SSRF_PROTECTION_ENABLED` Protections

Published: 2024-01-31 Fixed in: 1.11.0

GHSA-pc6f-259w-w3j6 CVSS_V3

Heartex - Label Studio Community Edition vulnerable to SSRF in the Data Import module

Published: 2022-10-04 Fixed in: 1.6.0

Label Studio