CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2026-30285

An arbitrary file overwrite vulnerability in Zora: Post, Trade, Earn Crypto v2.60.0 allows attackers to overwrite critical internal files via the file import process, leading to arbitrary code execution or information exposure.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.002

EPSS Ranking 38.2%

CVSS Severity

CVSS v3 Score 9.8

References

https://github.com/Secsys-FDU/AF_CVEs/issues/15
https://secsys.fudan.edu.cn/
https://zora.co/

Products affected by CVE-2026-30285

Zora » Zora » Version: 2.60.0

cpe:2.3:a:zora:zora:2.60.0

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2026-30285

Products

Pricing

Contact Us