CVE-2025-48495 — Vulnetix

Try Vulnetix Request Demo

CVE-2025-48495 PUBLISHED CVSS 4.800000190734863 MEDIUM

Gokapi has stored XSS vulnerability in friendly name for API keys

EPSS 0.03% · 7.5th percentile

Risk Scores

CVSS v4.0

4.800000190734863

CVSS:4.0/AV:N/AC:L/AT:N/PR:H/UI:P/VC:N/VI:N/VA:N/SC:L/SI:L/SA:L

EPSS Score

0.03%

7.5th percentile

Affected Products

Vendor	Product	Versions
Forceu	Gokapi	< 2.0.0, < 2.0.0
forceu	gokapi	0, 2.0.0, 2.0.0
github.com	forceu/gokapi	1.0.1, 0, 1.0.1

Timeline

Jan 21, 1970 Security Advisory
Jun 2, 2025 EPSS Score
Jun 2, 2025 Coalition ESS Score
Jun 2, 2025 CVE Published
Jun 12, 2025 EPSS Score
Jun 22, 2025 EPSS Score
Jul 3, 2025 EPSS Score
Jul 13, 2025 EPSS Score
Jul 23, 2025 EPSS Score
Aug 2, 2025 EPSS Score
Aug 12, 2025 EPSS Score
Aug 22, 2025 Coalition ESS Score

References

Open in Interactive Console →