Data

Tools

Indexes

Applications

Experiments

Advisories

An open API service providing security vulnerability metadata for many open source software ecosystems.

go

github.com/QuantumNous/new-api

go

View on github.com · View on proxy.golang.org

Security Advisories for github.com/QuantumNous/new-api in go

High
about 2 months ago

QuantumNous/new-api has an SSRF Filter Bypass via 0.0.0.0 GSA_kwCzR0hTQS12NWMzLTZ3dmMtcGMycc4ABWSl

go github.com/QuantumNous/new-api
High
about 2 months ago

New API: Stripe Webhook Signature Bypass via Empty Secret Enables Unlimited Quota Fraud GSA_kwCzR0hTQS14ZmYzLTVjOXAtMm1yNM4ABVws

go github.com/QuantumNous/new-api
Moderate
3 months ago

New API: IDOR in VideoProxy allows cross-user video content access via missing ownership check GSA_kwCzR0hTQS1mMzVyLXY5eDUtcjhtY84ABUC4

go github.com/QuantumNous/new-api
Moderate
3 months ago

New API has passkey-based secure step-up verification bypass for root-only channel secret disclosure GSA_kwCzR0hTQS01MzUzLWY4ZnEtNjV2Y84ABUC0

go github.com/QuantumNous/new-api
High
4 months ago

New API has Potential XSS in its MarkdownRenderer component GSA_kwCzR0hTQS0yOTl2LThwcTktNWdqcc4ABSv0

go github.com/QuantumNous/new-api
High
4 months ago

New API has an SQL LIKE Wildcard Injection DoS via Token Search GSA_kwCzR0hTQS13Nng2LTlmcDctZnFtNM4ABSvz

go github.com/QuantumNous/new-api
High
7 months ago

new-api is vulnerable to SSRF Bypass GSA_kwCzR0hTQS05ZjQ2LXcyNGgtNjl3NM4ABO2R

go github.com/QuantumNous/new-api

Filter by Severity

High 5 Moderate 2