Return to CVE list

CVE-2025-3801

2.4
Low

CVE-2025-3801

cna@vuldb.com
Awaiting Analysis
View on MITREFind on GitHub

Description

A vulnerability was found in songquanpeng one-api up to 0.6.10. It has been classified as problematic. This affects an unknown part of the component System Setting Handler. The manipulation of the argument Homepage Content/About System/Footer leads to cross site scripting. It is possible to initiate the attack remotely. The exploit has been disclosed to the public and may be used.

Exploits

No known exploits found for this CVE.

Search Exploit-DB

References

cna@vuldb.com
https://github.com/yaowenxiao721/Poc/blob/main/One-API/One-API-poc.md
cna@vuldb.com
https://vuldb.com/?ctiid.305655
cna@vuldb.com
https://vuldb.com/?id.305655
cna@vuldb.com
https://vuldb.com/?submit.554702