CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2026-30689

A blog.admin v.8.0 and before system's getinfobytoken API interface contains an improper access control which leads to sensitive data exposure. Unauthorized parties can obtain sensitive administrator account information via a valid token, threatening system security.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.0

EPSS Ranking 11.9%

CVSS Severity

CVSS v3 Score 7.5

References

http://blagadmin.com
https://gist.github.com/Sw3092567023/c420c6a5ee947d72aeab2b3e0ba92a40
https://github.com/anjoy8/Blog.Core

Products affected by CVE-2026-30689

Anjoy8 » Blog.admin » Version: 8.0

cpe:2.3:a:anjoy8:blog.admin:8.0

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2026-30689

Products

Pricing

Contact Us