CVE-2026-30689 | blog.admin up to 8.0 API Interface getinfobytoken access control

Inserito da Angelo Barbosa | Mar 27, 2026 | CVE

A vulnerability was found in blog.admin up to 8.0. It has been rated as problematic. Affected is the function getinfobytoken of the component API Interface. Performing a manipulation results in improper access controls.

This vulnerability was named CVE-2026-30689. The attack may be initiated remotely. There is no available exploit.

CVE-2026-30689 | blog.admin up to 8.0 API Interface getinfobytoken access control

Post correlati

CVE-2025-53959 | JetBrains YouTrack prior 2025.2.86069/2024.3.85077/2025.1.86199 Administrative API authorization

CVE-2024-35911 | Linux Kernel up to 6.6.25/6.8.4 ice_vsi_free_q_vectors null pointer dereference (e40a02f06ceb/11ff8392943e/1cb7fdb1dfde)

CVE-2023-31210 | Checkmk up to 2.2.0p152.2.0p16 Agent LD_LIBRARY_PATH uncontrolled search path

CVE-2024-38447 | NATO NCI ANET 3.4.1 Draft Report ID resource injection