2 matches found
CVE-2026-30689
A blog.admin v.8.0 and before system's getinfobytoken API interface contains an improper access control which leads to sensitive data exposure. Unauthorized parties can obtain sensitive administrator account information via a valid token, threatening system security...
CVE-2026-30689
creationtimestamp| type| source ---|---|--- 2026-03-27 23:16:17+00:00| seen| https://bsky.app/profile/thehackerwire.bsky.social/post/3mi3as3cro52t...