{"dataType": "CVE_RECORD", "dataVersion": "5.2", "cveMetadata": {"cveId": "CVE-2026-25591", "assignerOrgId": "a0819718-46f1-4df5-94e2-005712e83aaa", "state": "PUBLISHED", "assignerShortName": "GitHub_M", "dateReserved": "2026-02-03T01:02:46.716Z", "datePublished": "2026-02-24T00:41:30.198Z", "dateUpdated": "2026-02-26T14:57:18.199Z"}, "containers": {"cna": {"title": "New API has an SQL LIKE Wildcard Injection DoS via Token Search", "problemTypes": [{"descriptions": [{"cweId": "CWE-943", "lang": "en", "description": "CWE-943: Improper Neutralization of Special Elements in Data Query Logic", "type": "CWE"}]}], "metrics": [{"cvssV4_0": {"attackVector": "NETWORK", "attackComplexity": "LOW", "attackRequirements": "NONE", "privilegesRequired": "LOW", "userInteraction": "NONE", "vulnConfidentialityImpact": "NONE", "vulnIntegrityImpact": "NONE", "vulnAvailabilityImpact": "HIGH", "subConfidentialityImpact": "NONE", "subIntegrityImpact": "NONE", "subAvailabilityImpact": "NONE", "baseScore": 7.1, "baseSeverity": "HIGH", "vectorString": "CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N", "version": "4.0"}}], "references": [{"name": "https://github.com/QuantumNous/new-api/security/advisories/GHSA-w6x6-9fp7-fqm4", "tags": ["x_refsource_CONFIRM"], "url": "https://github.com/QuantumNous/new-api/security/advisories/GHSA-w6x6-9fp7-fqm4"}, {"name": "https://github.com/QuantumNous/new-api/commit/3e1be18310f35d20742683ca9e4bf3bcafc173c5", "tags": ["x_refsource_MISC"], "url": "https://github.com/QuantumNous/new-api/commit/3e1be18310f35d20742683ca9e4bf3bcafc173c5"}, {"name": "https://github.com/QuantumNous/new-api/releases/tag/v0.10.8-alpha.10", "tags": ["x_refsource_MISC"], "url": "https://github.com/QuantumNous/new-api/releases/tag/v0.10.8-alpha.10"}], "affected": [{"vendor": "QuantumNous", "product": "new-api", "versions": [{"version": "< 0.10.8-alpha.10", "status": "affected"}]}], "providerMetadata": {"orgId": "a0819718-46f1-4df5-94e2-005712e83aaa", "shortName": "GitHub_M", "dateUpdated": "2026-02-24T00:41:30.198Z"}, "descriptions": [{"lang": "en", "value": "New API is a large language mode (LLM) gateway and artificial intelligence (AI) asset management system. Prior to version 0.10.8-alpha.10, a SQL LIKE wildcard injection vulnerability in the `/api/token/search` endpoint allows authenticated users to cause denial of service through resource exhaustion by crafting malicious search patterns. The token search endpoint accepts user-supplied `keyword` and `token` parameters that are directly concatenated into SQL LIKE clauses without escaping wildcard characters (`%`, `_`). This allows attackers to inject patterns that trigger expensive database queries. Version 0.10.8-alpha.10 contains a patch."}], "source": {"advisory": "GHSA-w6x6-9fp7-fqm4", "discovery": "UNKNOWN"}}, "adp": [{"metrics": [{"other": {"type": "ssvc", "content": {"timestamp": "2026-02-26T14:56:53.649889Z", "id": "CVE-2026-25591", "options": [{"Exploitation": "poc"}, {"Automatable": "no"}, {"Technical Impact": "partial"}], "role": "CISA Coordinator", "version": "2.0.3"}}}], "title": "CISA ADP Vulnrichment", "providerMetadata": {"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "shortName": "CISA-ADP", "dateUpdated": "2026-02-26T14:57:18.199Z"}}]}}

{"dataType": "CVE_RECORD", "containers": {"adp": [{"title": "CISA ADP Vulnrichment", "metrics": [{"other": {"type": "ssvc", "content": {"id": "CVE-2026-25591", "role": "CISA Coordinator", "options": [{"Exploitation": "poc"}, {"Automatable": "no"}, {"Technical Impact": "partial"}], "version": "2.0.3", "timestamp": "2026-02-26T14:56:53.649889Z"}}}], "providerMetadata": {"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "shortName": "CISA-ADP", "dateUpdated": "2026-02-26T14:57:12.150Z"}}], "cna": {"title": "New API has an SQL LIKE Wildcard Injection DoS via Token Search", "source": {"advisory": "GHSA-w6x6-9fp7-fqm4", "discovery": "UNKNOWN"}, "metrics": [{"cvssV4_0": {"version": "4.0", "baseScore": 7.1, "attackVector": "NETWORK", "baseSeverity": "HIGH", "vectorString": "CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N", "userInteraction": "NONE", "attackComplexity": "LOW", "attackRequirements": "NONE", "privilegesRequired": "LOW", "subIntegrityImpact": "NONE", "vulnIntegrityImpact": "NONE", "subAvailabilityImpact": "NONE", "vulnAvailabilityImpact": "HIGH", "subConfidentialityImpact": "NONE", "vulnConfidentialityImpact": "NONE"}}], "affected": [{"vendor": "QuantumNous", "product": "new-api", "versions": [{"status": "affected", "version": "< 0.10.8-alpha.10"}]}], "references": [{"url": "https://github.com/QuantumNous/new-api/security/advisories/GHSA-w6x6-9fp7-fqm4", "name": "https://github.com/QuantumNous/new-api/security/advisories/GHSA-w6x6-9fp7-fqm4", "tags": ["x_refsource_CONFIRM"]}, {"url": "https://github.com/QuantumNous/new-api/commit/3e1be18310f35d20742683ca9e4bf3bcafc173c5", "name": "https://github.com/QuantumNous/new-api/commit/3e1be18310f35d20742683ca9e4bf3bcafc173c5", "tags": ["x_refsource_MISC"]}, {"url": "https://github.com/QuantumNous/new-api/releases/tag/v0.10.8-alpha.10", "name": "https://github.com/QuantumNous/new-api/releases/tag/v0.10.8-alpha.10", "tags": ["x_refsource_MISC"]}], "descriptions": [{"lang": "en", "value": "New API is a large language mode (LLM) gateway and artificial intelligence (AI) asset management system. Prior to version 0.10.8-alpha.10, a SQL LIKE wildcard injection vulnerability in the `/api/token/search` endpoint allows authenticated users to cause denial of service through resource exhaustion by crafting malicious search patterns. The token search endpoint accepts user-supplied `keyword` and `token` parameters that are directly concatenated into SQL LIKE clauses without escaping wildcard characters (`%`, `_`). This allows attackers to inject patterns that trigger expensive database queries. Version 0.10.8-alpha.10 contains a patch."}], "problemTypes": [{"descriptions": [{"lang": "en", "type": "CWE", "cweId": "CWE-943", "description": "CWE-943: Improper Neutralization of Special Elements in Data Query Logic"}]}], "providerMetadata": {"orgId": "a0819718-46f1-4df5-94e2-005712e83aaa", "shortName": "GitHub_M", "dateUpdated": "2026-02-24T00:41:30.198Z"}}}, "cveMetadata": {"cveId": "CVE-2026-25591", "state": "PUBLISHED", "dateUpdated": "2026-02-26T14:57:18.199Z", "dateReserved": "2026-02-03T01:02:46.716Z", "assignerOrgId": "a0819718-46f1-4df5-94e2-005712e83aaa", "datePublished": "2026-02-24T00:41:30.198Z", "assignerShortName": "GitHub_M"}, "dataVersion": "5.2"}

{"configurations": [{"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:a:newapi:new_api:*:*:*:*:*:*:*:*", "matchCriteriaId": "1527E2D6-778C-4D31-99A9-A21DE4621B69", "versionEndExcluding": "0.10.8", "vulnerable": true}, {"criteria": "cpe:2.3:a:newapi:new_api:0.10.8:alpha1:*:*:*:*:*:*", "matchCriteriaId": "92E4407B-5336-4C05-832E-AB226CB00D2E", "vulnerable": true}, {"criteria": "cpe:2.3:a:newapi:new_api:0.10.8:alpha2:*:*:*:*:*:*", "matchCriteriaId": "0A0A79DD-86C8-464A-9CB8-85C1D3DF57EB", "vulnerable": true}, {"criteria": "cpe:2.3:a:newapi:new_api:0.10.8:alpha3:*:*:*:*:*:*", "matchCriteriaId": "35F1C0B3-9CD8-4923-979D-A4BA24206E74", "vulnerable": true}, {"criteria": "cpe:2.3:a:newapi:new_api:0.10.8:alpha4:*:*:*:*:*:*", "matchCriteriaId": "108FA4C3-126D-4441-AA01-759D5ECF8F96", "vulnerable": true}, {"criteria": "cpe:2.3:a:newapi:new_api:0.10.8:alpha5:*:*:*:*:*:*", "matchCriteriaId": "4E268A4B-1BD9-46DF-8FA9-C69E7C886C06", "vulnerable": true}, {"criteria": "cpe:2.3:a:newapi:new_api:0.10.8:alpha6:*:*:*:*:*:*", "matchCriteriaId": "BE947FCB-2C34-4E90-9ACB-BE488E8DF6AE", "vulnerable": true}, {"criteria": "cpe:2.3:a:newapi:new_api:0.10.8:alpha7:*:*:*:*:*:*", "matchCriteriaId": "3631CF4F-5C43-4213-9E37-5E8A7E7C4423", "vulnerable": true}, {"criteria": "cpe:2.3:a:newapi:new_api:0.10.8:alpha8:*:*:*:*:*:*", "matchCriteriaId": "F8F77CC8-1191-4EE7-9D70-1867B832441A", "vulnerable": true}, {"criteria": "cpe:2.3:a:newapi:new_api:0.10.8:alpha9:*:*:*:*:*:*", "matchCriteriaId": "06A4D084-88E4-4DFF-9FB3-68F9B385E42C", "vulnerable": true}], "negate": false, "operator": "OR"}]}], "cveTags": [], "descriptions": [{"lang": "en", "value": "New API is a large language mode (LLM) gateway and artificial intelligence (AI) asset management system. Prior to version 0.10.8-alpha.10, a SQL LIKE wildcard injection vulnerability in the `/api/token/search` endpoint allows authenticated users to cause denial of service through resource exhaustion by crafting malicious search patterns. The token search endpoint accepts user-supplied `keyword` and `token` parameters that are directly concatenated into SQL LIKE clauses without escaping wildcard characters (`%`, `_`). This allows attackers to inject patterns that trigger expensive database queries. Version 0.10.8-alpha.10 contains a patch."}, {"lang": "es", "value": "La nueva API es un portal de modo de lenguaje grande (LLM) y un sistema de gesti\u00f3n de activos de inteligencia artificial (IA). Antes de la versi\u00f3n 0.10.8-alpha.10, una vulnerabilidad de inyecci\u00f3n de comodines SQL LIKE en el endpoint '/api/token/search' permite a usuarios autenticados causar denegaci\u00f3n de servicio a trav\u00e9s del agotamiento de recursos al crear patrones de b\u00fasqueda maliciosos. El endpoint de b\u00fasqueda de tokens acepta par\u00e1metros 'keyword' y 'token' suministrados por el usuario que se concatenan directamente en cl\u00e1usulas SQL LIKE sin escapar caracteres comod\u00edn ('%', '_'). Esto permite a los atacantes inyectar patrones que desencadenan consultas costosas a la base de datos. La versi\u00f3n 0.10.8-alpha.10 contiene un parche."}], "id": "CVE-2026-25591", "lastModified": "2026-03-03T17:22:36.210", "metrics": {"cvssMetricV31": [{"cvssData": {"attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "HIGH", "baseScore": 6.5, "baseSeverity": "MEDIUM", "confidentialityImpact": "NONE", "integrityImpact": "NONE", "privilegesRequired": "LOW", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H", "version": "3.1"}, "exploitabilityScore": 2.8, "impactScore": 3.6, "source": "nvd@nist.gov", "type": "Primary"}], "cvssMetricV40": [{"cvssData": {"Automatable": "NOT_DEFINED", "Recovery": "NOT_DEFINED", "Safety": "NOT_DEFINED", "attackComplexity": "LOW", "attackRequirements": "NONE", "attackVector": "NETWORK", "availabilityRequirement": "NOT_DEFINED", "baseScore": 7.1, "baseSeverity": "HIGH", "confidentialityRequirement": "NOT_DEFINED", "exploitMaturity": "NOT_DEFINED", "integrityRequirement": "NOT_DEFINED", "modifiedAttackComplexity": "NOT_DEFINED", "modifiedAttackRequirements": "NOT_DEFINED", "modifiedAttackVector": "NOT_DEFINED", "modifiedPrivilegesRequired": "NOT_DEFINED", "modifiedSubAvailabilityImpact": "NOT_DEFINED", "modifiedSubConfidentialityImpact": "NOT_DEFINED", "modifiedSubIntegrityImpact": "NOT_DEFINED", "modifiedUserInteraction": "NOT_DEFINED", "modifiedVulnAvailabilityImpact": "NOT_DEFINED", "modifiedVulnConfidentialityImpact": "NOT_DEFINED", "modifiedVulnIntegrityImpact": "NOT_DEFINED", "privilegesRequired": "LOW", "providerUrgency": "NOT_DEFINED", "subAvailabilityImpact": "NONE", "subConfidentialityImpact": "NONE", "subIntegrityImpact": "NONE", "userInteraction": "NONE", "valueDensity": "NOT_DEFINED", "vectorString": "CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X", "version": "4.0", "vulnAvailabilityImpact": "HIGH", "vulnConfidentialityImpact": "NONE", "vulnIntegrityImpact": "NONE", "vulnerabilityResponseEffort": "NOT_DEFINED"}, "source": "security-advisories@github.com", "type": "Secondary"}]}, "published": "2026-02-24T01:16:13.457", "references": [{"source": "security-advisories@github.com", "tags": ["Patch"], "url": "https://github.com/QuantumNous/new-api/commit/3e1be18310f35d20742683ca9e4bf3bcafc173c5"}, {"source": "security-advisories@github.com", "tags": ["Product"], "url": "https://github.com/QuantumNous/new-api/releases/tag/v0.10.8-alpha.10"}, {"source": "security-advisories@github.com", "tags": ["Exploit", "Mitigation", "Vendor Advisory"], "url": "https://github.com/QuantumNous/new-api/security/advisories/GHSA-w6x6-9fp7-fqm4"}], "sourceIdentifier": "security-advisories@github.com", "vulnStatus": "Analyzed", "weaknesses": [{"description": [{"lang": "en", "value": "CWE-943"}], "source": "security-advisories@github.com", "type": "Primary"}]}

{}

{"affected": [{"configurations": [{"platform": null, "status": "affected", "versions": {"scheme": "semver", "value": "[0,0.10.8-alpha.10)"}}], "enrichment": {"confidence": 100.0, "confidence_source": "matching", "scores": [{"score": 100.0, "source": "matching"}]}, "original": {"product": "new-api", "source": "cna", "vendor": "QuantumNous"}, "product": "new-api", "vendor": "quantumnous"}], "analysis": {"en": {"generated_at": "2026-04-17T16:04:11.473974+00:00", "value": {"mitigation_remediation": ["Update QuantumNous new-api to version 0.10.8\u2011alpha.10 or later to incorporate the patch", "Restrict the token search endpoint to authorized users and consider implementing rate limiting or query timeout controls to mitigate denial\u2011of\u2011service conditions", "Validate and escape any user\u2011supplied keyword or token parameters before they are incorporated into SQL LIKE clauses, ensuring that wildcard characters such as '%' and '_' are sanitized or prohibited"], "summary": {"action": "Apply Patch", "impact": "Denial of Service"}, "threat_synthesis": {"affected_systems": "QuantumNous new-api is affected, specifically all releases prior to v0.10.8\u2011alpha.10. Users running earlier alpha versions (0.10.8\u2011alpha.1 through 0.10.8\u2011alpha.9, and any older builds) are vulnerable. The patch included in v0.10.8\u2011alpha.10 addresses the unchecked wildcard usage.", "description_and_impact": "The vulnerability resides in the token search endpoint of the new-api, where user\u2011supplied keyword and token values are concatenated directly into a SQL LIKE clause without escaping wildcard characters. An attacker can supply patterns such as '%' or '_' that trigger extremely expensive database scans, exhausting server resources and resulting in a denial of service. This weakness, mapped to CWE\u2011943, leads to a loss of availability for authenticated users, and can be leveraged to disrupt service for any user who can access the search feature.", "risk_and_exploitability": "The CVSS 3.1 score of 7.1 indicates high severity; however, the EPSS score of less than 1% suggests a very low likelihood of exploitation. The vulnerability requires prior authentication and access to the /api/token/search endpoint, so it is not exploitable by unauthenticated actors. The vulnerability does not appear in the CISA KEV catalog, further reducing its known exploitation risk. Nevertheless, the potential for resource exhaustion remains significant for environments with high search traffic or limited database resources."}}}}, "created": "2026-02-24T09:54:15.053587+00:00", "updated": "2026-04-17T16:15:22.638624+00:00", "vendors": ["quantumnous", "quantumnous$PRODUCT$new-api"]}