B3NCLOUD ARTICLE INTELLIGENCE

ARTICLEVIEW

Zurück zu News
cvefeed.io
RISK: Mittel (3.1)

CVE-2026-54350 - Budibase: Anonymous NoSQL operator injection via published-app query templates

CVE ID :CVE-2026-54350 Published : June 26, 2026, 8:44 p.m. | 4 hours, 27 minutes ago Description :Budibase is an open-source low-code platform. Prior to 3.39.12, an unauthenticated visitor of any published Budibase app reads every document of the backing MongoDB, CouchDB, Elasticsearch,...

#Sicherheitslücke
Original-Artikel öffnen Zurück zur Übersicht

VERWANDTEARTIKEL

CVE-2026-56414 - H.VIEW HV-500S6 IP Camera Unrestricted Upload of File with Dangerous Type

2026-06-27 Mittel

CVE-2026-55975 - H.VIEW HV-500S6 IP Camera OS Command Injection

2026-06-26 Mittel

CVE-2026-31928 - Daktronics Controller Firmware Use of Hard-coded Credentials

2026-06-26 Mittel

CVE-2026-33560 - Daktronics Controller Firmware Unrestricted Upload of File with Dangerous Type

2026-06-26 Mittel

CVE-2026-28701 - Daktronics Controller Firmware Path Traversa

2026-06-26 Mittel

CVE-2026-49869 - Kestra: Unauthenticated Remote Code Execution via Authentication Bypass in `AuthenticationFilter`

2026-06-26 Mittel