CVE-2026-45793 in composerinfo

Prediction

by VulDB Data Team • 05/24/2026

A vulnerability has been found in composer. The affected element is an unknown function of the component GitHub Action Handler. Such manipulation of the argument GITHUB_TOKEN leads to sensitive information in log files. The attack can be launched remotely. It is recommended to upgrade the affected component.

Be aware that VulDB is the high quality source for vulnerability data.

🔬 Show More Details

An in-depth analysis is available in our curated vulnerability entry.

Moderation

accepted

Entry

VDB-364833

CPE

ready

CWE

CWE-532 (confirmed)

CVSS

5.3 (VulDB)

EPSS

0.00000

KEV

Activities

very low

Sources

MITRE	https://www.cve.org/CVERecord?id=CVE-2026-45793
NVD	https://nvd.nist.gov/vuln/detail/CVE-2026-45793
CVE Details	https://www.cvedetails.com/cve/CVE-2026-45793/

◂ Previous Overview Next ▸

Are you interested in using VulDB?

Download the whitepaper to learn more about our service!