CVE-2026-11465 songquanpeng one-api Redemption Code Top-Up Endpoint redemption.go Redeem logic error

🗓️ 07 Jun 2026 22:45:09Reported by VulDBType

Remote exploit of Redeem logic in one-api Redemption Code Top-Up Endpoint causes logic errors.

Reporter	Title	Published	Views	Family All 8
ATTACKERKB	CVE-2026-11465	7 Jun 202622:45	–	attackerkb
Circl	CVE-2026-11465	8 Jun 202600:45	–	circl
CVE	CVE-2026-11465	7 Jun 202622:45	–	cve
EUVD	EUVD-2026-34996	8 Jun 202600:30	–	euvd
NVD	CVE-2026-11465	7 Jun 202623:16	–	nvd
Positive Technologies	PT-2026-47196	7 Jun 202600:00	–	ptsecurity
RedhatCVE	CVE-2026-11465	9 Jun 202602:58	–	redhatcve
Vulnrichment	CVE-2026-11465 songquanpeng one-api Redemption Code Top-Up Endpoint redemption.go Redeem logic error	7 Jun 202622:45	–	vulnrichment

[
  {
    "vendor": "songquanpeng",
    "product": "one-api",
    "versions": [
      {
        "version": "0.6.11-preview.0",
        "status": "affected"
      },
      {
        "version": "0.6.11-preview.1",
        "status": "affected"
      },
      {
        "version": "0.6.11-preview.2",
        "status": "affected"
      },
      {
        "version": "0.6.11-preview.3",
        "status": "affected"
      },
      {
        "version": "0.6.11-preview.4",
        "status": "affected"
      },
      {
        "version": "0.6.11-preview.5",
        "status": "affected"
      },
      {
        "version": "0.6.11-preview.6",
        "status": "affected"
      },
      {
        "version": "0.6.11-preview.7",
        "status": "affected"
      }
    ],
    "cpes": [
      "cpe:2.3:a:songquanpeng:one-api:*:*:*:*:*:*:*:*"
    ],
    "modules": [
      "Redemption Code Top-Up Endpoint"
    ]
  }
]

Source	Link
vuldb	www.vuldb.com/cve/CVE-2026-11465
github	www.github.com/songquanpeng/one-api/
vuldb	www.vuldb.com/vuln/369085/cti
github	www.github.com/songquanpeng/one-api/pull/2399
github	www.github.com/songquanpeng/one-api/issues/2397
vuldb	www.vuldb.com/vuln/369085
vuldb	www.vuldb.com/submit/833320

07 Jun 2026 22:45Current

CVSS 22.1

CVSS 42.3

CVSS 3.13.1

CVSS 33.1

EPSS0.00032

CWE-840