CVE-2025-3801 | songquanpeng one-api up to 0.6.10 System Setting Homepage Content cross site scripting

A vulnerability was found in songquanpeng one-api up to 0.6.10. It has been classified as problematic. This affects an unknown part of the component System Setting Handler. The manipulation of the argument Homepage Content leads to cross site scripting.

This vulnerability is uniquely identified as CVE-2025-3801. It is possible to initiate the attack remotely. Furthermore, there is an exploit available.VulDB Recent EntriesRead More