{"dataType": "CVE_RECORD", "dataVersion": "5.2", "cveMetadata": {"cveId": "CVE-2026-25802", "assignerOrgId": "a0819718-46f1-4df5-94e2-005712e83aaa", "state": "PUBLISHED", "assignerShortName": "GitHub_M", "dateReserved": "2026-02-05T19:58:01.641Z", "datePublished": "2026-02-24T00:42:45.515Z", "dateUpdated": "2026-02-26T14:58:43.459Z"}, "containers": {"cna": {"title": "New API has Potential XSS in its MarkdownRenderer component", "problemTypes": [{"descriptions": [{"cweId": "CWE-79", "lang": "en", "description": "CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')", "type": "CWE"}]}], "metrics": [{"cvssV3_1": {"attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "LOW", "baseScore": 7.6, "baseSeverity": "HIGH", "confidentialityImpact": "NONE", "integrityImpact": "HIGH", "privilegesRequired": "LOW", "scope": "CHANGED", "userInteraction": "REQUIRED", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:N/I:H/A:L", "version": "3.1"}}], "references": [{"name": "https://github.com/QuantumNous/new-api/security/advisories/GHSA-299v-8pq9-5gjq", "tags": ["x_refsource_CONFIRM"], "url": "https://github.com/QuantumNous/new-api/security/advisories/GHSA-299v-8pq9-5gjq"}, {"name": "https://github.com/QuantumNous/new-api/commit/ab5456eb1049aa8a0f3e51f359907ec7fff38b4b", "tags": ["x_refsource_MISC"], "url": "https://github.com/QuantumNous/new-api/commit/ab5456eb1049aa8a0f3e51f359907ec7fff38b4b"}], "affected": [{"vendor": "QuantumNous", "product": "new-api", "versions": [{"version": "< 0.10.8-alpha.9", "status": "affected"}]}], "providerMetadata": {"orgId": "a0819718-46f1-4df5-94e2-005712e83aaa", "shortName": "GitHub_M", "dateUpdated": "2026-02-24T00:42:45.515Z"}, "descriptions": [{"lang": "en", "value": "New API is a large language mode (LLM) gateway and artificial intelligence (AI) asset management system. Prior to version 0.10.8-alpha.9, a potential unsafe operation occurs in component `MarkdownRenderer.jsx`, allowing for Cross-Site Scripting(XSS) when the model outputs items containing `<script>` tag. Version 0.10.8-alpha.9 fixes the issue."}], "source": {"advisory": "GHSA-299v-8pq9-5gjq", "discovery": "UNKNOWN"}}, "adp": [{"metrics": [{"other": {"type": "ssvc", "content": {"timestamp": "2026-02-26T14:58:19.417572Z", "id": "CVE-2026-25802", "options": [{"Exploitation": "poc"}, {"Automatable": "no"}, {"Technical Impact": "partial"}], "role": "CISA Coordinator", "version": "2.0.3"}}}], "title": "CISA ADP Vulnrichment", "providerMetadata": {"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "shortName": "CISA-ADP", "dateUpdated": "2026-02-26T14:58:43.459Z"}}]}}

{"dataType": "CVE_RECORD", "containers": {"adp": [{"title": "CISA ADP Vulnrichment", "metrics": [{"other": {"type": "ssvc", "content": {"id": "CVE-2026-25802", "role": "CISA Coordinator", "options": [{"Exploitation": "poc"}, {"Automatable": "no"}, {"Technical Impact": "partial"}], "version": "2.0.3", "timestamp": "2026-02-26T14:58:19.417572Z"}}}], "providerMetadata": {"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "shortName": "CISA-ADP", "dateUpdated": "2026-02-26T14:58:34.000Z"}}], "cna": {"title": "New API has Potential XSS in its MarkdownRenderer component", "source": {"advisory": "GHSA-299v-8pq9-5gjq", "discovery": "UNKNOWN"}, "metrics": [{"cvssV3_1": {"scope": "CHANGED", "version": "3.1", "baseScore": 7.6, "attackVector": "NETWORK", "baseSeverity": "HIGH", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:N/I:H/A:L", "integrityImpact": "HIGH", "userInteraction": "REQUIRED", "attackComplexity": "LOW", "availabilityImpact": "LOW", "privilegesRequired": "LOW", "confidentialityImpact": "NONE"}}], "affected": [{"vendor": "QuantumNous", "product": "new-api", "versions": [{"status": "affected", "version": "< 0.10.8-alpha.9"}]}], "references": [{"url": "https://github.com/QuantumNous/new-api/security/advisories/GHSA-299v-8pq9-5gjq", "name": "https://github.com/QuantumNous/new-api/security/advisories/GHSA-299v-8pq9-5gjq", "tags": ["x_refsource_CONFIRM"]}, {"url": "https://github.com/QuantumNous/new-api/commit/ab5456eb1049aa8a0f3e51f359907ec7fff38b4b", "name": "https://github.com/QuantumNous/new-api/commit/ab5456eb1049aa8a0f3e51f359907ec7fff38b4b", "tags": ["x_refsource_MISC"]}], "descriptions": [{"lang": "en", "value": "New API is a large language mode (LLM) gateway and artificial intelligence (AI) asset management system. Prior to version 0.10.8-alpha.9, a potential unsafe operation occurs in component `MarkdownRenderer.jsx`, allowing for Cross-Site Scripting(XSS) when the model outputs items containing `<script>` tag. Version 0.10.8-alpha.9 fixes the issue."}], "problemTypes": [{"descriptions": [{"lang": "en", "type": "CWE", "cweId": "CWE-79", "description": "CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')"}]}], "providerMetadata": {"orgId": "a0819718-46f1-4df5-94e2-005712e83aaa", "shortName": "GitHub_M", "dateUpdated": "2026-02-24T00:42:45.515Z"}}}, "cveMetadata": {"cveId": "CVE-2026-25802", "state": "PUBLISHED", "dateUpdated": "2026-02-26T14:58:43.459Z", "dateReserved": "2026-02-05T19:58:01.641Z", "assignerOrgId": "a0819718-46f1-4df5-94e2-005712e83aaa", "datePublished": "2026-02-24T00:42:45.515Z", "assignerShortName": "GitHub_M"}, "dataVersion": "5.2"}

{"configurations": [{"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:a:newapi:new_api:*:*:*:*:*:*:*:*", "matchCriteriaId": "1527E2D6-778C-4D31-99A9-A21DE4621B69", "versionEndExcluding": "0.10.8", "vulnerable": true}, {"criteria": "cpe:2.3:a:newapi:new_api:0.10.8:alpha1:*:*:*:*:*:*", "matchCriteriaId": "92E4407B-5336-4C05-832E-AB226CB00D2E", "vulnerable": true}, {"criteria": "cpe:2.3:a:newapi:new_api:0.10.8:alpha2:*:*:*:*:*:*", "matchCriteriaId": "0A0A79DD-86C8-464A-9CB8-85C1D3DF57EB", "vulnerable": true}, {"criteria": "cpe:2.3:a:newapi:new_api:0.10.8:alpha3:*:*:*:*:*:*", "matchCriteriaId": "35F1C0B3-9CD8-4923-979D-A4BA24206E74", "vulnerable": true}, {"criteria": "cpe:2.3:a:newapi:new_api:0.10.8:alpha4:*:*:*:*:*:*", "matchCriteriaId": "108FA4C3-126D-4441-AA01-759D5ECF8F96", "vulnerable": true}, {"criteria": "cpe:2.3:a:newapi:new_api:0.10.8:alpha5:*:*:*:*:*:*", "matchCriteriaId": "4E268A4B-1BD9-46DF-8FA9-C69E7C886C06", "vulnerable": true}, {"criteria": "cpe:2.3:a:newapi:new_api:0.10.8:alpha6:*:*:*:*:*:*", "matchCriteriaId": "BE947FCB-2C34-4E90-9ACB-BE488E8DF6AE", "vulnerable": true}, {"criteria": "cpe:2.3:a:newapi:new_api:0.10.8:alpha7:*:*:*:*:*:*", "matchCriteriaId": "3631CF4F-5C43-4213-9E37-5E8A7E7C4423", "vulnerable": true}, {"criteria": "cpe:2.3:a:newapi:new_api:0.10.8:alpha8:*:*:*:*:*:*", "matchCriteriaId": "F8F77CC8-1191-4EE7-9D70-1867B832441A", "vulnerable": true}], "negate": false, "operator": "OR"}]}], "cveTags": [], "descriptions": [{"lang": "en", "value": "New API is a large language mode (LLM) gateway and artificial intelligence (AI) asset management system. Prior to version 0.10.8-alpha.9, a potential unsafe operation occurs in component `MarkdownRenderer.jsx`, allowing for Cross-Site Scripting(XSS) when the model outputs items containing `<script>` tag. Version 0.10.8-alpha.9 fixes the issue."}, {"lang": "es", "value": "Nueva API es una pasarela de modelo de lenguaje grande (LLM) y un sistema de gesti\u00f3n de activos de inteligencia artificial (IA). Antes de la versi\u00f3n 0.10.8-alpha.9, ocurre una operaci\u00f3n potencialmente insegura en el componente `MarkdownRenderer.jsx`, permitiendo cross-site scripting (XSS) cuando el modelo genera elementos que contienen la etiqueta `"}], "id": "CVE-2026-25802", "lastModified": "2026-02-25T20:17:51.200", "metrics": {"cvssMetricV31": [{"cvssData": {"attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "LOW", "baseScore": 7.6, "baseSeverity": "HIGH", "confidentialityImpact": "NONE", "integrityImpact": "HIGH", "privilegesRequired": "LOW", "scope": "CHANGED", "userInteraction": "REQUIRED", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:N/I:H/A:L", "version": "3.1"}, "exploitabilityScore": 2.3, "impactScore": 4.7, "source": "security-advisories@github.com", "type": "Secondary"}, {"cvssData": {"attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "NONE", "baseScore": 5.4, "baseSeverity": "MEDIUM", "confidentialityImpact": "LOW", "integrityImpact": "LOW", "privilegesRequired": "LOW", "scope": "CHANGED", "userInteraction": "REQUIRED", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N", "version": "3.1"}, "exploitabilityScore": 2.3, "impactScore": 2.7, "source": "nvd@nist.gov", "type": "Primary"}]}, "published": "2026-02-24T01:16:14.927", "references": [{"source": "security-advisories@github.com", "tags": ["Patch"], "url": "https://github.com/QuantumNous/new-api/commit/ab5456eb1049aa8a0f3e51f359907ec7fff38b4b"}, {"source": "security-advisories@github.com", "tags": ["Exploit", "Vendor Advisory"], "url": "https://github.com/QuantumNous/new-api/security/advisories/GHSA-299v-8pq9-5gjq"}], "sourceIdentifier": "security-advisories@github.com", "vulnStatus": "Analyzed", "weaknesses": [{"description": [{"lang": "en", "value": "CWE-79"}], "source": "security-advisories@github.com", "type": "Primary"}]}

{}

{"affected": [{"configurations": [{"platform": null, "status": "affected", "versions": {"scheme": "semver", "value": "[0,0.10.8-alpha.9)"}}], "enrichment": {"confidence": 100.0, "confidence_source": "matching", "scores": [{"score": 100.0, "source": "matching"}]}, "original": {"product": "new-api", "source": "cna", "vendor": "QuantumNous"}, "product": "new-api", "vendor": "quantumnous"}], "analysis": {"en": {"generated_at": "2026-04-18T11:00:46.600313+00:00", "value": {"mitigation_remediation": ["Upgrade the new-api to version 0.10.8-alpha.9 or newer.", "Sanitize or escape all LLM output before rendering to remove <script> tags.", "Disable the MarkdownRenderer feature or block rendering of script tags in the UI until the patch is applied."], "summary": {"action": "Upgrade", "impact": "Cross\u2011Site Scripting"}, "threat_synthesis": {"affected_systems": "QuantumNous new-api versions up to 0.10.8-alpha.8 are affected. The issue is resolved in version 0.10.8-alpha.9 and later.", "description_and_impact": "The vulnerability exists in the MarkdownRenderer.jsx component of the QuantumNous new-api. An inadequate sanitization process allows an attacker to embed <script> tags in content generated by the language model, and when this content is rendered in a user\u2019s browser the injected script can execute arbitrary JavaScript, creating a cross\u2011site scripting flaw as defined by CWE-79.", "risk_and_exploitability": "The CVSS score of 7.6 indicates a high\u2011moderate risk. The EPSS score of less than 1% suggests that exploitation is unlikely under current conditions. The vulnerability is not listed in the CISA KEV catalog. Based on the description, it is inferred that the attack vector is remote: an attacker can craft model prompts that produce malicious HTML, which is then rendered in browsers that view the content."}}}}, "created": "2026-02-24T09:54:14.165031+00:00", "updated": "2026-04-18T11:15:35.899092+00:00", "vendors": ["quantumnous", "quantumnous$PRODUCT$new-api"]}