CVE-2026-30954

See a problem?
Please try reporting it to the source first.

Source

https://cve.org/CVERecord?id=CVE-2026-30954

Import Source

https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2026-30954.json

JSON Data

https://api.osv.dev/v1/vulns/CVE-2026-30954

Aliases

GHSA-vc99-cgj6-wwxh

Published

2026-03-10T20:40:31.011Z

Modified

2026-04-10T05:42:03.749191Z

Severity

5.3 (Medium) CVSS_V4 - CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N CVSS Calculator

Summary

LinkAce has a Cross-User Tag/List Attachment IDOR in processTaxonomy()

Details

LinkAce is a self-hosted archive to collect website links. In 2.1.0 and earlier, the processTaxonomy() method in LinkRepository.php allows authenticated users to attach other users' private tags and lists to their own links by passing integer IDs.

Database specific

{
    "cwe_ids": [
        "CWE-639"
    ],
    "cna_assigner": "GitHub_M",
    "osv_generated_from": "https://github.com/CVEProject/cvelistV5/tree/main/cves/2026/30xxx/CVE-2026-30954.json"
}

References

Affected packages

Git / github.com/kovah/linkace

Affected ranges

Type

GIT

Repo

https://github.com/kovah/linkace

Events

Introduced

Last affected

b3e0f65e9b9a523be495b1e006f676cd401a1b84

Database specific

{
    "versions": [
        {
            "introduced": "0"
        },
        {
            "last_affected": "2.1.0"
        }
    ]
}

Affected versions

v0.*

v0.0.1

v0.0.10

v0.0.11

v0.0.12

v0.0.13

v0.0.14

v0.0.15

v0.0.16

v0.0.17

v0.0.18

v0.0.19

v0.0.2

v0.0.20

v0.0.21

v0.0.22

v0.0.23

v0.0.24

v0.0.25

v0.0.26

v0.0.27

v0.0.28

v0.0.29

v0.0.3

v0.0.30

v0.0.31

v0.0.32

v0.0.33

v0.0.34

v0.0.35

v0.0.36

v0.0.37

v0.0.38

v0.0.39

v0.0.4

v0.0.40

v0.0.41

v0.0.42

v0.0.43

v0.0.44

v0.0.5

v0.0.6

v0.0.7

v0.0.8

v0.0.9

v1.*

v1.0.0

v1.0.1

v1.1.0

v1.10.0

v1.10.1

v1.2.0

v1.2.1

v1.2.2

v1.3.0

v1.3.1

v1.4.0

v1.4.1

v1.5.0

v1.6.0

v1.6.1

v1.6.2

v1.6.3

v1.6.4

v1.7.0

v1.8.0

v1.8.1

v1.9.0

v1.9.1

v1.9.2

v2.*

v2.0.0

v2.0.0-beta1

v2.0.0-beta2

v2.0.0-beta3

v2.0.0-beta4

v2.1.0

Database specific

source

"https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2026-30954.json"