4 matches found
CVE-2025-3801
creationtimestamp| type| source ---|---|--- 2025-04-19 14:59:56+00:00| published-proof-of-concept| https://t.me/DarkWebInformerCVEAlerts/12584 2025-04-19 17:39:17+00:00| seen| https://t.me/cvedetector/23383...
CVE-2025-3801 songquanpeng one-api System Setting cross site scripting
A vulnerability was found in songquanpeng one-api up to 0.6.10. It has been classified as problematic. This affects an unknown part of the component System Setting Handler. The manipulation of the argument Homepage Content/About System/Footer leads to cross site scripting. It is possible to...
CVE-2025-3801 songquanpeng one-api System Setting cross site scripting
A vulnerability was found in songquanpeng one-api up to 0.6.10. It has been classified as problematic. This affects an unknown part of the component System Setting Handler. The manipulation of the argument Homepage Content/About System/Footer leads to cross site scripting. It is possible to...
CVE-2025-3801
CVE-2025-3801 refers to a cross-site scripting vulnerability in github.com/songquanpeng/one-api up to version 0.6.10. The weakness is in the System Setting Handler where manipulating the arguments Homepage Content/About System/Footer can lead to XSS. The issue is exploitable remotely and, per lin...