CVE-2024-7066
- EPSS 1.57%
- Veröffentlicht 24.07.2024 11:15:11
- Zuletzt bearbeitet 21.11.2024 09:50:49
A vulnerability was found in F-logic DataCube3 1.0. It has been declared as critical. Affected by this vulnerability is an unknown functionality of the file /admin/config_time_sync.php of the component HTTP POST Request Handler. The manipulation of t...
CVE-2024-34852
- EPSS 2.22%
- Veröffentlicht 28.05.2024 17:15:10
- Zuletzt bearbeitet 10.06.2025 17:21:00
F-logic DataCube3 v1.0 is affected by command injection due to improper string filtering at the command execution point in the ./admin/transceiver_schedule.php file. An unauthenticated remote attacker can exploit this vulnerability by sending a file ...
CVE-2024-34854
- EPSS 0.77%
- Veröffentlicht 28.05.2024 17:15:10
- Zuletzt bearbeitet 10.06.2025 17:19:30
F-logic DataCube3 v1.0 is vulnerable to File Upload via `/admin/transceiver_schedule.php.`
CVE-2024-31750
- EPSS 93.64%
- Veröffentlicht 19.04.2024 00:15:10
- Zuletzt bearbeitet 10.06.2025 01:32:26
SQL injection vulnerability in f-logic datacube3 v.1.0 allows a remote attacker to obtain sensitive information via the req_id parameter.
CVE-2024-25830
- EPSS 35.85%
- Veröffentlicht 29.02.2024 01:44:16
- Zuletzt bearbeitet 10.06.2025 19:22:13
F-logic DataCube3 v1.0 is vulnerable to Incorrect Access Control due to an improper directory access restriction. An unauthenticated, remote attacker can exploit this, by sending a URI that contains the path of the configuration file. A successful ex...