4 matches found
CVE-2025-52552
FastGPT is an AI Agent building platform. Prior to version 4.9.12, the LastRoute Parameter on login page is vulnerable to open redirect and DOM-based XSS. Improper validation and lack of sanitization of this parameter allows attackers execute malicious JavaScript or redirect them to...
CVE-2025-52552 FastGPT LastRoute Parameter on Login Page Vulnerable to Open Redirect and DOM-based XSS
FastGPT is an AI Agent building platform. Prior to version 4.9.12, the LastRoute Parameter on login page is vulnerable to open redirect and DOM-based XSS. Improper validation and lack of sanitization of this parameter allows attackers execute malicious JavaScript or redirect them to...
CVE-2025-52552
CVE-2025-52552 concerns FastGPT, where the LastRoute Parameter on the login page, in versions prior to 4.9.12, is vulnerable to open redirects and DOM-based XSS due to improper validation and lack of sanitization. This can allow an attacker to execute malicious JavaScript or redirect users to att...
FastGPT 输入验证错误漏洞
FastGPT is an open source knowledge base question and answer system based on a large language model from labring open source. An input validation error vulnerability exists in FastGPT versions prior to 4.9.12, which stems from insufficient validation of the LastRoute parameter, and could lead to...