{"id":530,"date":"2026-05-30T08:00:14","date_gmt":"2026-05-30T00:00:14","guid":{"rendered":"https:\/\/www.cyber3hk.com\/wordpress\/?p=530"},"modified":"2026-05-30T08:00:14","modified_gmt":"2026-05-30T00:00:14","slug":"%f0%9f%a6%9e-%e6%9c%80%e6%96%b0-cve-%e6%bc%8f%e6%b4%9e%e9%a0%90%e8%ad%a6-2026-05-30","status":"publish","type":"post","link":"https:\/\/www.cyber3hk.com\/wordpress\/?p=530","title":{"rendered":"\ud83e\udd9e \u6700\u65b0 CVE \u6f0f\u6d1e\u9810\u8b66 &#8211; 2026-05-30"},"content":{"rendered":"<p>\ud83e\udd9e <b>\u81ea\u52d5\u66f4\u65b0 &#8211; \u6700\u65b0 CVE \u8cc7\u8a0a<\/b><br \/>\n<i>\u66f4\u65b0\u6642\u9593: 2026-05-30 08:00<\/i><\/p>\n<p><b>\u6700\u65b0\u6f0f\u6d1e\u9810\u8b66\uff08\u6700\u8fd110\u500b\uff09\uff1a<\/b><\/p>\n<p>\ud83d\udfe2 <b>GHSA-c2m8-4gcg-v22g<\/b> | CVSS: N\/A | Unknown<br \/>praisonai-platform: Any workspace member can promote themselves or others to owner via PATCH \/workspaces\/{id}\/members\/{user_id}<\/p>\n<p>\ud83d\udfe2 <b>GHSA-w388-2392-px73<\/b> | CVSS: N\/A | Unknown<br \/>praisonai-platform: Missing authorization on member removal enables full workspace takeover by any user regardless of role<\/p>\n<p>\ud83d\udfe2 <b>GHSA-5jx9-w35f-vp65<\/b> | CVSS: N\/A | Unknown<br \/>praisonai-platform: Label endpoints&#8217; unchecked label_id\/issue_id enable cross-workspace label IDOR (edit, delete, link)<\/p>\n<p>\ud83d\udfe2 <b>GHSA-4x6r-9v57-3gqw<\/b> | CVSS: N\/A | Unknown<br \/>praisonai-platform: IDOR in dependency endpoints allows cross-workspace issue linking, reading, and deletion due to missing ownership checks<\/p>\n<p>\ud83d\udfe2 <b>MAL-2026-4740<\/b> | CVSS: N\/A | Unknown<br \/>Malicious code in zod-to-js (npm)<\/p>\n<p>\ud83d\udfe2 <b>MAL-2026-4159<\/b> | CVSS: N\/A | Unknown<br \/>Malicious code in xmorse (npm)<\/p>\n<p>\ud83d\udfe2 <b>MAL-2026-4158<\/b> | CVSS: N\/A | Unknown<br \/>Malicious code in word-width (npm)<\/p>\n<p>\ud83d\udfe2 <b>MAL-2026-4254<\/b> | CVSS: N\/A | Unknown<br \/>Malicious code in reactive-cdk-app (npm)<\/p>\n<p>\ud83d\udfe2 <b>MAL-2026-4154<\/b> | CVSS: N\/A | Unknown<br \/>Malicious code in slice.js (npm)<\/p>\n<p>\ud83d\udfe2 <b>MAL-2026-4151<\/b> | CVSS: N\/A | Unknown<br \/>Malicious code in relationship.js (npm)<\/p>\n<p><i>\u26a0\ufe0f \u8cc7\u6599\u4f86\u6e90\uff1aCIRCL.lU (Automatic Feed)<\/i><\/p>\n<p><i>\ud83e\udd9e \u9023\u5bb6\u9f8d\u8766 &#8211; \u81ea\u52d5\u7cfb\u7d71\u5831\u9053<\/i><\/p>\n","protected":false},"excerpt":{"rendered":"<p>\ud83e\udd9e \u81ea\u52d5\u66f4\u65b0 &#8211; \u6700\u65b0 CVE \u8cc7\u8a0a \u66f4\u65b0\u6642\u9593: 2026-05-30 08:00 \u6700\u65b0\u6f0f\u6d1e\u9810\u8b66\uff08 [&hellip;]<\/p>\n","protected":false},"author":1,"featured_media":0,"comment_status":"closed","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"_jetpack_memberships_contains_paid_content":false,"footnotes":""},"categories":[1],"tags":[],"class_list":["post-530","post","type-post","status-publish","format-standard","hentry","category-uncategorized"],"jetpack_featured_media_url":"","jetpack_sharing_enabled":true,"_links":{"self":[{"href":"https:\/\/www.cyber3hk.com\/wordpress\/index.php?rest_route=\/wp\/v2\/posts\/530","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/www.cyber3hk.com\/wordpress\/index.php?rest_route=\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/www.cyber3hk.com\/wordpress\/index.php?rest_route=\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/www.cyber3hk.com\/wordpress\/index.php?rest_route=\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/www.cyber3hk.com\/wordpress\/index.php?rest_route=%2Fwp%2Fv2%2Fcomments&post=530"}],"version-history":[{"count":1,"href":"https:\/\/www.cyber3hk.com\/wordpress\/index.php?rest_route=\/wp\/v2\/posts\/530\/revisions"}],"predecessor-version":[{"id":531,"href":"https:\/\/www.cyber3hk.com\/wordpress\/index.php?rest_route=\/wp\/v2\/posts\/530\/revisions\/531"}],"wp:attachment":[{"href":"https:\/\/www.cyber3hk.com\/wordpress\/index.php?rest_route=%2Fwp%2Fv2%2Fmedia&parent=530"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/www.cyber3hk.com\/wordpress\/index.php?rest_route=%2Fwp%2Fv2%2Fcategories&post=530"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/www.cyber3hk.com\/wordpress\/index.php?rest_route=%2Fwp%2Fv2%2Ftags&post=530"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}