CVE-2026-33620 | PinchTab up to 0.8.3 URL Query Parameter token get request method with sensitive query strings (GHSA-mrqc-3276-74f8)

Inserito da Angelo Barbosa | Mar 26, 2026 | CVE

A vulnerability has been found in PinchTab up to 0.8.3 and classified as problematic. This vulnerability affects unknown code of the component URL Query Parameter Handler. The manipulation of the argument token leads to use of get request method with sensitive query strings.

This vulnerability is documented as CVE-2026-33620. The attack can be initiated remotely. There is not any exploit available.

The affected component should be upgraded.

CVE-2026-33620 | PinchTab up to 0.8.3 URL Query Parameter token get request method with sensitive query strings (GHSA-mrqc-3276-74f8)

Post correlati

CVE-2024-40829 | Apple watchOS Lock Screen information disclosure

CVE-2024-45624 | PgPool Global Development Group Pgpool-II up to 4.1.21/4.2.18/4.3.11/4.4.8/4.5.3w Database information disclosure

CVE-2025-0231 | Codezips Gym Management System 1.0 submit_payments.php m_id sql injection

CVE-2023-51947 | actidata actiNAS SL 2U-8 RDX 3.2.03-SP1 nasSvr.php access control