ARTIKEL SUCHE
Threat Feed QueryDurchsuche alle aggregierten Security-Artikel nach Schlagworten, CVE-IDs und Quellen.
CVE-2024-58337 - Akuvox Smart Intercom S539 Improper Access Control via ServicesHTTPAPI
CVE ID : CVE-2024-58337 Published : Dec. 30, 2025, 11:15 p.m. | 21 minutes ago Description : Akuvox Smart Intercom S539 contains an improper access control vulnerability that allows users with 'User' privileges to mod
CVE-2024-58338 - Anevia Flamingo XL 3.2.9 Remote Root Jailbreak via Traceroute Command
CVE ID : CVE-2024-58338 Published : Dec. 30, 2025, 11:15 p.m. | 21 minutes ago Description : Anevia Flamingo XL 3.2.9 contains a restricted shell vulnerability that allows remote attackers to escape the sandboxed envi
CVE-2024-58315 - Tosibox Key Service 3.3.0 Local Privilege Escalation via Unquoted Service Path
CVE ID : CVE-2024-58315 Published : Dec. 30, 2025, 11:15 p.m. | 21 minutes ago Description : Tosibox Key Service 3.3.0 contains an unquoted service path vulnerability that allows local non-privileged users to potentia
CVE-2024-58336 - Akuvox Smart Intercom S539 Unauthenticated Video Stream Disclosure
CVE ID : CVE-2024-58336 Published : Dec. 30, 2025, 11:15 p.m. | 21 minutes ago Description : Akuvox Smart Intercom S539 contains an unauthenticated vulnerability that allows remote attackers to access live video strea
CVE-2024-25181 - Givanz VvvebJs SSRF and Arbitrary File Reading Vulnerability
CVE ID : CVE-2024-25181 Published : 29. Dezember 2025 20:15 | 21 Stunden, 21 Minuten ago Description : A critical vulnerability has been identified in givanz VvvebJs 1.7.2, which allows both Server-Side Request Forger
CVE-2024-44065 - Cloudlog Blind SQL Injection
CVE ID : CVE-2024-44065 Published : Dec. 26, 2025, 5:15 p.m. | 3 hours, 42 minutes ago Description : Time-based blind SQL Injection vulnerability in Cloudlog v2.6.15 at the endpoint /index.php/logbookadvanced/search i
CVE-2024-10441
Currently trending CVE - Hype Score: 8 - Improper encoding or escaping of output vulnerability in the system plugin daemon in Synology BeeStation OS (BSM) before 1.1-65374 and Synology DiskStation Manager (DSM) before 7.
CVE-2024-57521 - RuoYi SQL Injection Remote Code Execution
CVE ID : CVE-2024-57521 Published : Dec. 23, 2025, 5:15 p.m. | 3 hours, 41 minutes ago Description : SQL Injection vulnerability in RuoYi v.4.7.9 and before allows a remote attacker to execute arbitrary code via the c
CVE-2024-27708 - Airc.pt MyNET Iframe Injection Vulnerability
CVE ID : CVE-2024-27708 Published : Dec. 22, 2025, 8:15 p.m. | 4 hours, 40 minutes ago Description : Iframe injection vulnerability in airc.pt/solucoes-servicos.solucoes MyNET v.26.06 and before allows a remote attack
CVE-2024-49587 - Glutton V1 endpoints missing authentication
CVE ID : CVE-2024-49587 Published : Dec. 19, 2025, 4:33 p.m. | 18 minutes ago Description : Glutton V1 service endpoints were exposed without any authentication on Gotham stacks, this could have allowed users that did
CVE-2024-44599 - FNT Command Directory Traversal Vulnerability
CVE ID : CVE-2024-44599 Published : Dec. 15, 2025, 4:15 p.m. | 2 hours, 35 minutes ago Description : FNT Command 13.4.0 is vulnerable to Directory Traversal. Severity: 8.3 | HIGH Visit the link for more details, suc
CVE-2024-44598 - FNT Command Code Execution Vulnerability
CVE ID : CVE-2024-44598 Published : Dec. 15, 2025, 4:15 p.m. | 2 hours, 35 minutes ago Description : FNT Command 13.4.0 is vulnerable to Code Execution via the C Base Module. Severity: 8.8 | HIGH Visit the link for
CVE-2024-58305 - WonderCMS 4.3.2 Cross-Site Scripting Remote Code Execution via Module Installation
CVE ID : CVE-2024-58305 Published : Dec. 12, 2025, 8:15 p.m. | 35 minutes ago Description : WonderCMS 4.3.2 contains a cross-site scripting vulnerability that allows attackers to inject malicious JavaScript through th
CVE-2024-58311 - Dormakaba Saflok System 6000 Key Generation Cryptographic Weakness
CVE ID : CVE-2024-58311 Published : Dec. 12, 2025, 8:15 p.m. | 35 minutes ago Description : Dormakaba Saflok System 6000 contains a predictable key generation algorithm that allows attackers to derive card access keys
CVE-2024-58314 - Atcom 2.7.x.x Authenticated Command Injection via Web Configuration CGI
CVE ID : CVE-2024-58314 Published : Dec. 12, 2025, 8:15 p.m. | 35 minutes ago Description : Atcom 100M IP Phones firmware version 2.7.x.x contains an authenticated command injection vulnerability in the web configurat
CVE-2024-14010 - Typora 1.7.4 OS Command Injection via Export PDF Preferences
CVE ID : CVE-2024-14010 Published : Dec. 12, 2025, 8:15 p.m. | 35 minutes ago Description : Typora 1.7.4 contains a command injection vulnerability in the PDF export preferences that allows attackers to execute arbitr
CVE-2024-58299 - PCMan FTP Server 2.0 Remote Buffer Overflow via 'pwd' Command
CVE ID : CVE-2024-58299 Published : Dec. 12, 2025, 8:15 p.m. | 35 minutes ago Description : PCMan FTP Server 2.0 contains a buffer overflow vulnerability in the 'pwd' command that allows remote attackers to execute ar
CVE-2024-58316 - Online Shopping System Advanced 1.0 SQL Injection via Payment Success Parameter
CVE ID : CVE-2024-58316 Published : Dec. 12, 2025, 8:14 p.m. | 36 minutes ago Description : Online Shopping System Advanced 1.0 contains a SQL injection vulnerability in the payment_success.php script that allows atta
CVE-2024-58306 - minaliC 2.0.0 Denial of Service Vulnerability via Large GET Request
CVE ID : CVE-2024-58306 Published : Dec. 11, 2025, 10:15 p.m. | 35 minutes ago Description : minaliC 2.0.0 contains a denial of service vulnerability that allows remote attackers to crash the web server by sending ove
CVE-2024-58307 - CSZCMS 1.3.0 Authenticated SQL Injection via Members View Endpoint
CVE ID : CVE-2024-58307 Published : Dec. 11, 2025, 10:15 p.m. | 35 minutes ago Description : CSZCMS 1.3.0 contains an authenticated SQL injection vulnerability in the members view functionality that allows authenticat