Lucene search
K

4 matches found

RedhatCVE
RedhatCVE
added 2025/06/23 8:40 a.m.10 views

CVE-2025-52552

FastGPT is an AI Agent building platform. Prior to version 4.9.12, the LastRoute Parameter on login page is vulnerable to open redirect and DOM-based XSS. Improper validation and lack of sanitization of this parameter allows attackers execute malicious JavaScript or redirect them to...

5.5CVSS7.2AI score0.00234EPSS
Exploits1References1
Cvelist
Cvelist
added 2025/06/21 2:15 a.m.14 views

CVE-2025-52552 FastGPT LastRoute Parameter on Login Page Vulnerable to Open Redirect and DOM-based XSS

FastGPT is an AI Agent building platform. Prior to version 4.9.12, the LastRoute Parameter on login page is vulnerable to open redirect and DOM-based XSS. Improper validation and lack of sanitization of this parameter allows attackers execute malicious JavaScript or redirect them to...

5.5CVSS0.00234EPSS
Exploits1References2
CVE
CVE
added 2025/06/21 2:15 a.m.24 views

CVE-2025-52552

CVE-2025-52552 concerns FastGPT, where the LastRoute Parameter on the login page, in versions prior to 4.9.12, is vulnerable to open redirects and DOM-based XSS due to improper validation and lack of sanitization. This can allow an attacker to execute malicious JavaScript or redirect users to att...

6.1CVSS6.6AI score0.00234EPSS
Exploits1References2Affected Software1
CNNVD
CNNVD
added 2025/06/21 12:0 a.m.4 views

FastGPT 输入验证错误漏洞

FastGPT is an open source knowledge base question and answer system based on a large language model from labring open source. An input validation error vulnerability exists in FastGPT versions prior to 4.9.12, which stems from insufficient validation of the LastRoute parameter, and could lead to...

6.1CVSS5.9AI score0.00234EPSS
Exploits1References2
Rows per page
Query Builder