Lucene search
+L

7 matches found

zdt
zdt
added 2024/03/11 12:0 a.m.326 views

DataCube3 v1.0 - Unrestricted file upload Remote Code Execution Exploit

Exploit Title: DataCube3 v1.0 - Unrestricted file upload 'RCE' Exploit Author: Samy Younsi - NS Labs https://neroteam.com Vendor Homepage: https://www.f-logic.jp Software Link: https://www.f-logic.jp/pdf/support/manualproduct/manualproductdatacube3ver1.0sc.pdf Version: Ver1.0 Tested on: DataCube3...

9.8CVSS6.7AI score0.2403EPSS
Exploits6
packetstorm
packetstorm
added 2024/03/11 12:0 a.m.272 views

DataCube3 1.0 Shell Upload

Exploit Title: DataCube3 v1.0 - Unrestricted file upload 'RCE' Date: 7/28/2022 Exploit Author: Samy Younsi - NS Labs https://neroteam.com Vendor Homepage: https://www.f-logic.jp Software Link: https://www.f-logic.jp/pdf/support/manualproduct/manualproductdatacube3ver1.0sc.pdf Version: Ver1.0 Test...

7.4AI score0.2403EPSS
Exploits6
exploitdb
exploitdb
added 2024/03/10 12:0 a.m.405 views

DataCube3 v1.0 - Unrestricted file upload 'RCE'

Exploit Title: DataCube3 v1.0 - Unrestricted file upload 'RCE' Date: 7/28/2022 Exploit Author: Samy Younsi - NS Labs https://neroteam.com Vendor Homepage: https://www.f-logic.jp Software Link: https://www.f-logic.jp/pdf/support/manualproduct/manualproductdatacube3ver1.0sc.pdf Version: Ver1.0 Test...

9.8CVSS6.9AI score0.2403EPSS
Exploits6
githubexploit
githubexploit
added 2024/03/06 4:11 a.m.336 views

Exploit for Unrestricted Upload of File with Dangerous Type in F-Logic Datacube3

CVE-2024-25830 and CVE-2024-25832 - DataCube3 Improper Access...

9.8CVSS9.5AI score0.2403EPSS
Exploits6
nvd
nvd
added 2024/02/29 1:44 a.m.21 views

CVE-2024-25830

F-logic DataCube3 v1.0 is vulnerable to Incorrect Access Control due to an improper directory access restriction. An unauthenticated, remote attacker can exploit this, by sending a URI that contains the path of the configuration file. A successful exploit could allow the attacker to extract the...

9.8CVSS6.6AI score0.2403EPSS
Exploits5References1
cve
cve
added 2024/02/28 12:0 a.m.96 views

CVE-2024-25830

DataCube3 v1.0 suffers from an Incorrect Access Control due to an improper directory access restriction. An unauthenticated remote attacker can exploit this by sending a URI that includes the path of the configuration file, potentially extracting the root and admin passwords . Multiple connected ...

9.8CVSS6.8AI score0.2403EPSS
Exploits5References1Affected Software1
cvelist
cvelist
added 2024/02/28 12:0 a.m.39 views

CVE-2024-25830

F-logic DataCube3 v1.0 is vulnerable to Incorrect Access Control due to an improper directory access restriction. An unauthenticated, remote attacker can exploit this, by sending a URI that contains the path of the configuration file. A successful exploit could allow the attacker to extract the...

6.9AI score0.2403EPSS
Exploits5References1
Rows per page
Query Builder