CVE ID :CVE-2026-13207 Published : June 30, 2026, 8:24 p.m. | 48 minutes ago Description :FUXA versions 1.3.1 and prior contain an authentication bypass vulnerability via dot-segment path normalization in the REST API. The API router fails to normalize dot-segment sequences before applying...

#Sicherheitslücke #Phishing #IoT

Original-Artikel öffnen Zurück zur Übersicht

ARTICLEVIEW

CVE-2026-13207 - Frangoteam FUXA SCADA/HMI Authentication Bypass by Spoofing

VERWANDTEARTIKEL

CVE-2026-57995 - phpMyFAQ - Privilege Escalation via Missing Self-Rights Constraint in GroupController::updatePermissions

CVE-2026-56700 - Grav - Multiple Remote Code Execution Vulnerabilities via Unsafe Unserialize and Command Injection

CVE-2026-56300 - Capgo - Unauthenticated API Key Validity and Permission Oracle via RPC Functions

CVE-2026-56286 - Capgo - Account Deletion Without Password Confirmation

CVE-2026-56278 - Flowise - Session Hijacking via Weak Default Express Session Secret

CVE-2026-56264 - Crawl4AI - Arbitrary JavaScript Execution via /execute_js Endpoint