CVE-2025-30066 – Tj-Actions Information Disclosure Vulnerability

March 15, 2025
7:17 am

CVE ID : CVE-2025-30066

Published : March 15, 2025, 6:15 a.m. | 46 minutes ago

Description : tj-actions changed-files through 45.0.7 allows remote attackers to discover secrets by reading actions logs. (The tags v1 through v45.0.7 were not originally affected, but were modified by a threat actor to point at commit 0e58ed8, which contains the malicious updateFeatures code.)

Severity: 8.6 | HIGH

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

CVE-2025-30066 – Tj-Actions Information Disclosure Vulnerability

Elvescore.io

Recent Posts

CVE-2024-13497 – Tripetto WordPress Stored Cross-Site Scripting Vulnerability

CVE-2025-1771 – WordPress Traveler Theme Local File Inclusion Vulnerability

CVE-2025-1773 – WordPress Traveler Theme Reflected Cross-Site Scripting