CVE-2026-30920 | oneuptime up to 10.0.18 GitHub Endpoint installation_id data authenticity

Inserito da Angelo Barbosa | Mar 10, 2026 | CVE

A vulnerability classified as critical has been found in oneuptime up to 10.0.18. This affects an unknown function of the component GitHub Endpoint. Performing a manipulation of the argument installation_id results in insufficient verification of data authenticity.

This vulnerability is cataloged as CVE-2026-30920. It is possible to initiate the attack remotely. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2026-30920 | oneuptime up to 10.0.18 GitHub Endpoint installation_id data authenticity

Post correlati

CVE-2023-6487 | theluckywp LuckyWP Table of Contents Plugin up to 2.1.4 on WordPress Header Title cross site scripting

CVE-2024-1296 | Brizy Page Builder Plugin up to 2.4.40 on WordPress cross site scripting

CVE-2026-2593 | Greenshift Plugin up to 12.8.5 on WordPress Block Attribute _gspb_post_css cross site scripting

CVE-2025-9483 | Linksys RE6250/RE6300/RE6350/RE6500/RE7000/RE9000 singlePortForwardAdd ruleName/schedule/inboundFilter stack-based overflow