Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

onesignal — Vulnerabilities & Security Advisories 3

Browse all 3 CVE security advisories affecting onesignal. AI-powered Chinese analysis, POCs, and references for each vulnerability.

Top products by onesignal:OneSignal – Web Push Notificationsreact-native-onesignal
CVE IDTitleCVSSSeverityPublished
CVE-2026-3155 OneSignal – Web Push Notifications <= 3.8.0 - Missing Authorization to Authenticated (Subscriber+) Post Meta Deletion via 'post_id' — OneSignal – Web Push NotificationsCWE-862 3.1 Low2026-04-16
CVE-2025-13950 OneSignal – Web Push Notifications <= 3.6.1 - Missing Authorization to Unauthenticated Plugin Settings Update — OneSignal – Web Push NotificationsCWE-862 5.3 Medium2025-12-15
CVE-2023-28430 OneSignal repository github action command injection — react-native-onesignalCWE-77 7.3 High2023-03-27

This page lists every published CVE security advisory associated with onesignal. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.