ARTIKEL SUCHE
Threat Feed QueryDurchsuche alle aggregierten Security-Artikel nach Schlagworten, CVE-IDs und Quellen.
CVE-2024-58308 - Quick.CMS 6.7 SQL Injection Authentication Bypass via Admin Login
CVE ID : CVE-2024-58308 Published : Dec. 11, 2025, 10:15 p.m. | 35 minutes ago Description : Quick.CMS 6.7 contains a SQL injection vulnerability that allows unauthenticated attackers to bypass login authentication by
CVE-2024-58309 - xbtitFM 4.1.18 Unauthenticated SQL Injection in shoutedit.php
CVE ID : CVE-2024-58309 Published : Dec. 11, 2025, 10:15 p.m. | 35 minutes ago Description : xbtitFM 4.1.18 contains an unauthenticated SQL injection vulnerability that allows remote attackers to manipulate database q
CVE-2024-58310 - APC Network Management Card 4 Path Traversal via Directory Traversal
CVE ID : CVE-2024-58310 Published : Dec. 11, 2025, 10:15 p.m. | 35 minutes ago Description : APC Network Management Card 4 contains a path traversal vulnerability that allows unauthenticated attackers to access sensit
CVE-2024-58312 - xbtitFM 4.1.18 Unauthenticated Path Traversal in nfogen.php
CVE ID : CVE-2024-58312 Published : Dec. 11, 2025, 10:15 p.m. | 35 minutes ago Description : xbtitFM 4.1.18 contains a path traversal vulnerability that allows unauthenticated attackers to access sensitive system file
CVE-2024-58313 - xbtitFM 4.1.18 Insecure File Upload in file_hosting Feature
CVE ID : CVE-2024-58313 Published : Dec. 11, 2025, 10:15 p.m. | 35 minutes ago Description : xbtitFM 4.1.18 contains an insecure file upload vulnerability that allows authenticated attackers with administrative privil
CVE-2024-58298 - Compuware iStrobe Web 20.13 Pre-Auth Remote Code Execution via File Upload
CVE ID : CVE-2024-58298 Published : Dec. 11, 2025, 10:15 p.m. | 35 minutes ago Description : Compuware iStrobe Web 20.13 contains a pre-authentication remote code execution vulnerability that allows unauthenticated at
CVE-2024-58300 - Siklu MultiHaul TG Series < 2.0.0 Unauthenticated Credential Disclosure Vulnerability
CVE ID : CVE-2024-58300 Published : Dec. 11, 2025, 10:15 p.m. | 35 minutes ago Description : Siklu MultiHaul TG series devices before version 2.0.0 contain an unauthenticated vulnerability that allows remote attackers
CVE-2024-58301 - Purei CMS 1.0 SQL Injection via Multiple Vulnerable Endpoints
CVE ID : CVE-2024-58301 Published : Dec. 11, 2025, 10:15 p.m. | 35 minutes ago Description : Purei CMS 1.0 contains a time-based blind SQL injection vulnerability that allows attackers to manipulate database queries t
CVE-2024-58303 - FoF Pretty Mail 1.1.2 Server Side Template Injection via Email Template Settings
CVE ID : CVE-2024-58303 Published : Dec. 11, 2025, 10:15 p.m. | 35 minutes ago Description : FoF Pretty Mail 1.1.2 contains a server-side template injection vulnerability that allows administrative users to inject mal
CVE-2024-58293 - Akaunting 3.1.8 Server-Side Template Injection via Multiple Form Fields
CVE ID : CVE-2024-58293 Published : Dec. 11, 2025, 10:15 p.m. | 35 minutes ago Description : Akaunting 3.1.8 contains a server-side template injection vulnerability that allows authenticated administrators to execute
CVE-2024-58294 - FreePBX 16 Authenticated Remote Code Execution via API Module
CVE ID : CVE-2024-58294 Published : Dec. 11, 2025, 10:15 p.m. | 35 minutes ago Description : FreePBX 16 contains an authenticated remote code execution vulnerability in the API module that allows attackers with valid
CVE-2024-58295 - ElkArte Forum 1.1.9 Authenticated Remote Code Execution via Theme Upload
CVE ID : CVE-2024-58295 Published : Dec. 11, 2025, 10:15 p.m. | 35 minutes ago Description : ElkArte Forum 1.1.9 contains a remote code execution vulnerability that allows authenticated administrators to upload malici
CVE-2024-58287 - reNgine 2.2.0 Authenticated Command Injection via Scan Engine Configuration
CVE ID : CVE-2024-58287 Published : Dec. 11, 2025, 10:15 p.m. | 35 minutes ago Description : reNgine 2.2.0 contains a command injection vulnerability in the nmap_cmd parameter of scan engine configuration that allows
CVE-2024-58288 - Genexus Protection Server 9.7.2.10 Unquoted Service Path Privilege Escalation
CVE ID : CVE-2024-58288 Published : Dec. 11, 2025, 10:15 p.m. | 35 minutes ago Description : Genexus Protection Server 9.7.2.10 contains an unquoted service path vulnerability in the protsrvservice Windows service con
CVE-2024-58290 - Xhibiter NFT Marketplace 1.10.2 SQL Injection via Collections Endpoint
CVE ID : CVE-2024-58290 Published : Dec. 11, 2025, 10:15 p.m. | 35 minutes ago Description : Xhibiter NFT Marketplace 1.10.2 contains a SQL injection vulnerability in the collections endpoint that allows attackers to
CVE-2024-58286 - dizqueTV 1.5.3 Remote Code Execution via FFMPEG Executable Path
CVE ID : CVE-2024-58286 Published : Dec. 11, 2025, 10:15 p.m. | 35 minutes ago Description : dizqueTV 1.5.3 contains a remote code execution vulnerability that allows attackers to inject arbitrary commands through the
CVE-2024-58282 - Serendipity 2.5.0 Remote Code Execution via Authenticated Media Upload
CVE ID : CVE-2024-58282 Published : Dec. 10, 2025, 10:16 p.m. | 33 minutes ago Description : Serendipity 2.5.0 contains a remote code execution vulnerability that allows authenticated administrators to upload maliciou
CVE-2024-58283 - WBCE CMS 1.6.2 Remote Code Execution via Elfinder File Upload
CVE ID : CVE-2024-58283 Published : Dec. 10, 2025, 10:16 p.m. | 33 minutes ago Description : WBCE CMS version 1.6.2 contains a remote code execution vulnerability that allows authenticated attackers to upload maliciou
CVE-2024-58284 - PopojiCMS 2.0.1 Remote Command Execution via Authenticated Metadata Settings
CVE ID : CVE-2024-58284 Published : Dec. 10, 2025, 10:16 p.m. | 33 minutes ago Description : PopojiCMS 2.0.1 contains an authenticated remote command execution vulnerability that allows administrative users to inject
CVE-2024-58279 - appRain CMF 4.0.5 Authenticated Remote Code Execution via Filemanager Upload
CVE ID : CVE-2024-58279 Published : Dec. 10, 2025, 10:16 p.m. | 33 minutes ago Description : appRain CMF 4.0.5 contains an authenticated remote code execution vulnerability that allows administrative users to upload m