{"dataType": "CVE_RECORD", "cveMetadata": {"state": "PUBLISHED", "cveId": "CVE-2026-30689", "assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "assignerShortName": "mitre", "dateUpdated": "2026-03-27T20:32:29.894Z", "dateReserved": "2026-03-04T00:00:00.000Z", "datePublished": "2026-03-27T00:00:00.000Z"}, "containers": {"cna": {"providerMetadata": {"orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "shortName": "mitre", "dateUpdated": "2026-03-27T13:54:02.867Z"}, "descriptions": [{"lang": "en", "value": "A blog.admin v.8.0 and before system's getinfobytoken API interface contains an improper access control which leads to sensitive data exposure. Unauthorized parties can obtain sensitive administrator account information via a valid token, threatening system security."}], "affected": [{"vendor": "n/a", "product": "n/a", "versions": [{"version": "n/a", "status": "affected"}]}], "references": [{"url": "http://blagadmin.com"}, {"url": "https://github.com/anjoy8/Blog.Core"}, {"url": "https://gist.github.com/Sw3092567023/c420c6a5ee947d72aeab2b3e0ba92a40"}], "problemTypes": [{"descriptions": [{"type": "text", "lang": "en", "description": "n/a"}]}]}, "adp": [{"problemTypes": [{"descriptions": [{"type": "CWE", "cweId": "CWE-284", "lang": "en", "description": "CWE-284 Improper Access Control"}]}], "metrics": [{"cvssV3_1": {"scope": "UNCHANGED", "version": "3.1", "baseScore": 7.5, "attackVector": "NETWORK", "baseSeverity": "HIGH", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N", "integrityImpact": "NONE", "userInteraction": "NONE", "attackComplexity": "LOW", "availabilityImpact": "NONE", "privilegesRequired": "NONE", "confidentialityImpact": "HIGH"}}, {"other": {"type": "ssvc", "content": {"timestamp": "2026-03-27T20:31:27.696071Z", "id": "CVE-2026-30689", "options": [{"Exploitation": "poc"}, {"Automatable": "yes"}, {"Technical Impact": "partial"}], "role": "CISA Coordinator", "version": "2.0.3"}}}], "title": "CISA ADP Vulnrichment", "providerMetadata": {"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "shortName": "CISA-ADP", "dateUpdated": "2026-03-27T20:32:29.894Z"}}]}, "dataVersion": "5.2"}

{"dataType": "CVE_RECORD", "containers": {"adp": [{"title": "CISA ADP Vulnrichment", "metrics": [{"cvssV3_1": {"scope": "UNCHANGED", "version": "3.1", "baseScore": 7.5, "attackVector": "NETWORK", "baseSeverity": "HIGH", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N", "integrityImpact": "NONE", "userInteraction": "NONE", "attackComplexity": "LOW", "availabilityImpact": "NONE", "privilegesRequired": "NONE", "confidentialityImpact": "HIGH"}}, {"other": {"type": "ssvc", "content": {"id": "CVE-2026-30689", "role": "CISA Coordinator", "options": [{"Exploitation": "poc"}, {"Automatable": "yes"}, {"Technical Impact": "partial"}], "version": "2.0.3", "timestamp": "2026-03-27T20:31:27.696071Z"}}}], "problemTypes": [{"descriptions": [{"lang": "en", "type": "CWE", "cweId": "CWE-284", "description": "CWE-284 Improper Access Control"}]}], "providerMetadata": {"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "shortName": "CISA-ADP", "dateUpdated": "2026-03-27T20:31:54.015Z"}}], "cna": {"affected": [{"vendor": "n/a", "product": "n/a", "versions": [{"status": "affected", "version": "n/a"}]}], "references": [{"url": "http://blagadmin.com"}, {"url": "https://github.com/anjoy8/Blog.Core"}, {"url": "https://gist.github.com/Sw3092567023/c420c6a5ee947d72aeab2b3e0ba92a40"}], "descriptions": [{"lang": "en", "value": "A blog.admin v.8.0 and before system's getinfobytoken API interface contains an improper access control which leads to sensitive data exposure. Unauthorized parties can obtain sensitive administrator account information via a valid token, threatening system security."}], "problemTypes": [{"descriptions": [{"lang": "en", "type": "text", "description": "n/a"}]}], "providerMetadata": {"orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "shortName": "mitre", "dateUpdated": "2026-03-27T13:54:02.867Z"}}}, "cveMetadata": {"cveId": "CVE-2026-30689", "state": "PUBLISHED", "dateUpdated": "2026-03-27T20:32:29.894Z", "dateReserved": "2026-03-04T00:00:00.000Z", "assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "datePublished": "2026-03-27T00:00:00.000Z", "assignerShortName": "mitre"}, "dataVersion": "5.2"}

{"cveTags": [], "descriptions": [{"lang": "en", "value": "A blog.admin v.8.0 and before system's getinfobytoken API interface contains an improper access control which leads to sensitive data exposure. Unauthorized parties can obtain sensitive administrator account information via a valid token, threatening system security."}], "id": "CVE-2026-30689", "lastModified": "2026-03-30T13:26:29.793", "metrics": {"cvssMetricV31": [{"cvssData": {"attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "NONE", "baseScore": 7.5, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "NONE", "privilegesRequired": "NONE", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N", "version": "3.1"}, "exploitabilityScore": 3.9, "impactScore": 3.6, "source": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "type": "Secondary"}]}, "published": "2026-03-27T15:16:53.620", "references": [{"source": "cve@mitre.org", "url": "http://blagadmin.com"}, {"source": "cve@mitre.org", "url": "https://gist.github.com/Sw3092567023/c420c6a5ee947d72aeab2b3e0ba92a40"}, {"source": "cve@mitre.org", "url": "https://github.com/anjoy8/Blog.Core"}], "sourceIdentifier": "cve@mitre.org", "vulnStatus": "Awaiting Analysis", "weaknesses": [{"description": [{"lang": "en", "value": "CWE-284"}], "source": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "type": "Secondary"}]}

{}

{"affected": [{"configurations": [{"platform": null, "status": "affected", "versions": {"scheme": "generic", "value": "[0,8.0]"}}], "enrichment": {"confidence": 75.0, "confidence_source": "inferred", "scores": [{"score": 75.0, "source": "inferred"}]}, "original": {"product": "n/a", "source": "cna", "vendor": "n/a"}, "product": "blog.admin", "vendor": "anjoy8"}], "analysis": {"en": {"generated_at": "2026-03-29T21:21:40.160927+00:00", "value": {"mitigation_remediation": ["Upgrade or patch the BlogAdmin installation to a version where the access control bug is fixed.", "If an upgrade is unavailable, rotate all existing authentication tokens to invalidate potentially compromised ones.", "Restrict network access to the getinfobytoken endpoint to known administrative hosts or IP ranges using firewall rules.", "Monitor log files for repeated attempts to call getinfobytoken with unusual tokens."], "summary": {"action": "Apply Patch", "impact": "Sensitive Data Exposure"}, "threat_synthesis": {"affected_systems": "BlogAdmin platform version 8.0 and all earlier releases are affected. No specific vendor name is listed, but the vulnerability applies to the GitHub repositories referenced in the advisory.", "description_and_impact": "The vulnerability resides in the getinfobytoken API of BlogAdmin versions 8.0 and earlier and results from an improper access control check that allows a request bearing a valid authentication token to retrieve sensitive administrator account details. Because the API accepts a token that should normally be scoped for normal users, an attacker who can obtain such a token may expose privileged credentials, potentially enabling further exploitation or compromise of the platform.", "risk_and_exploitability": "The CVSS score is 7.5, indicating a moderate to high severity. The EPSS score of less than 1% suggests the likelihood of exploitation is currently low, and the vulnerability is not in the CISA KEV catalogue. Despite the low exploitation probability, the issue can be leveraged if an attacker obtains or compromises a legitimate token, underscoring the need for timely remediation."}}}}, "created": "2026-03-27T20:29:03.013802+00:00", "title": "Improper Access Control in BlogAdmin GetInfoByToken API Exposes Administrator Credentials", "updated": "2026-03-30T08:00:13.461845+00:00", "vendors": ["anjoy8", "anjoy8$PRODUCT$blog.admin"]}