CVE-2026-28430

creationtimestamp| type| source ---|---|--- 2026-03-16 19:16:17+00:00| seen| https://www.incibe.es/incibe-cert/alerta-temprana/vulnerabilidades/cve-2026-28430 2026-03-17 00:00:47+00:00| seen| https://infosec.exchange/users/offseq/statuses/116241573279155444 2026-03-18 22:14:51+00:00| seen|...

CVE-2023-28430

OneSignal is an email, sms, push notification, and in-app message service for mobile apps.The Zapier.yml workflow is triggered on issues types: closed i.e., when an Issue is closed. The workflow starts with full write-permissions GitHub repository token since the default workflow permissions on...

CVE-2024-28430

creationtimestamp| type| source ---|---|--- 2024-03-13 14:31:53+00:00| seen| https://t.me/ctinow/206724 2024-03-13 14:32:01+00:00| seen| https://t.me/ctinow/206732...

CVE-2024-28430

DedeCMS v5.7 was discovered to contain a Cross-Site Request Forgery CSRF vulnerability via the component /dede/catalogedit.php...

CVE-2024-28430

DedeCMS v5.7 was discovered to contain a Cross-Site Request Forgery CSRF vulnerability via the component /dede/catalogedit.php...

CVE-2024-28430

CVE-2024-28430 concerns DedeCMS v5.7 and a Cross‑Site Request Forgery (CSRF) flaw in the /dede/catalog_edit.php component. Public descriptions from Red Hat and OpenVAS corroborate a CSRF issue affecting DedeCMS 5.7, with multiple sources noting the vulnerability originates from that specific edit...

CVE-2023-28430 OneSignal repository github action command injection

OneSignal is an email, sms, push notification, and in-app message service for mobile apps.The Zapier.yml workflow is triggered on issues types: closed i.e., when an Issue is closed. The workflow starts with full write-permissions GitHub repository token since the default workflow permissions on...

CVE-2020-28430

creationtimestamp| type| source ---|---|--- 2021-02-23 18:35:13+00:00| published-proof-of-concept| https://t.me/cibsecurity/23995...

CVE-2020-28430

CVE-2020-28430 is a withdrawn candidate; however, connected advisories confirm a live issue in nuance-gulp-build-common. All versions of the npm package are vulnerable to Command Injection via the index.js file, enabling arbitrary OS commands (as shown by the PoC using a.run("touch JHU")). Veraco...

CVE-2020-28430

...

Adobe Acrobat/Reader Security Bypass Vulnerability (CNVD-2017-28430)

Adobe Acrobat and Reader are the United States of America Audobee Adobe company's products. The former is a set of PDF file editing and conversion tools, the latter is a set of PDF document reading software. There is a security bypass vulnerability in Adobe Acrobat and Reader. An attacker could...