CVE-2026-30689

Published: Mar 27, 2026

Modified: Mar 27, 2026

PUBLISHED

Description

A blog.admin v.8.0 and before system's getinfobytoken API interface contains an improper access control which leads to sensitive data exposure. Unauthorized parties can obtain sensitive administrator account information via a valid token, threatening system security.

Vendor	Product	Versions
n/a	n/a	affected `n/a`

References

http://blagadmin.com

https://github.com/anjoy8/Blog.Core

https://gist.github.com/Sw3092567023/c420c6a5ee947d72aeab2b3e0ba92a40

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now

CVE-2026-30689

Description

Affected Products

References