Описание
A vulnerability was found in songquanpeng one-api up to 0.6.10. It has been classified as problematic. This affects an unknown part of the component System Setting Handler. The manipulation of the argument Homepage Content/About System/Footer leads to cross site scripting. It is possible to initiate the attack remotely. The exploit has been disclosed to the public and may be used.
EPSS
Процентиль: 15%
0.0005
Низкий
2.4 Low
CVSS3
3.3 Low
CVSS2
Дефекты
CWE-79
Связанные уязвимости
EPSS
Процентиль: 15%
0.0005
Низкий
2.4 Low
CVSS3
3.3 Low
CVSS2
Дефекты
CWE-79