Skip to main content

Changed Files

2 CVEs product

Monthly

CVE-2025-30066 HIGH POC KEV THREAT Act Now

tj-actions/changed-files GitHub Action was compromised in a supply chain attack where modified tags pointed to credential-stealing code, exposing secrets from GitHub Actions workflows across thousands of repositories.

Information Disclosure Changed Files
NVD GitHub
CVSS 3.1
8.6
EPSS
92.0%
CVE-2023-51664 CRITICAL POC PATCH Act Now

tj-actions/changed-files is a Github action to retrieve all files and directories. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available.

RCE Command Injection Changed Files
NVD GitHub
CVSS 3.1
9.8
EPSS
3.4%
EPSS 92% CVSS 8.6
HIGH POC KEV THREAT Act Now

tj-actions/changed-files GitHub Action was compromised in a supply chain attack where modified tags pointed to credential-stealing code, exposing secrets from GitHub Actions workflows across thousands of repositories.

Information Disclosure Changed Files
NVD GitHub
EPSS 3% CVSS 9.8
CRITICAL POC PATCH Act Now

tj-actions/changed-files is a Github action to retrieve all files and directories. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available.

RCE Command Injection Changed Files
NVD GitHub

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy