CVE-2026-30346

Published April 27th, 2026

View on NVD ↗

CVSS v3

4.3

MEDIUM

CVSS v2

N/A

Affected

PROJECT

Description

An open redirect in the /api/google/authorize endpoint of hunvreus DevPush v0.3.2 allows attackers to redirect users to malicious sites via supplying a crafted URL.

hunvreus/devpush

Like Vercel, but open source and for all languages.

GitHub

4.67K