CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2026-30289

An arbitrary file overwrite vulnerability in Tinybeans Private Family Album App v5.9.5-prod allows attackers to overwrite critical internal files via the file import process, leading to arbitrary code execution or information exposure.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.0

EPSS Ranking 2.3%

CVSS Severity

CVSS v3 Score 8.4

References

https://github.com/Secsys-FDU/AF_CVEs/issues/17
https://play.google.com/store/apps/details?id=com.tinybeans
https://secsys.fudan.edu.cn/
https://tinybeans.com/

Products affected by CVE-2026-30289

Tinybeans » Private Family Album » Version: 5.9.5

cpe:2.3:a:tinybeans:private_family_album:5.9.5

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2026-30289

Products

Pricing

Contact Us