Datacube3

datacube3

Vendor: F Logic • 3 CVEs

CVEs (3)

CVE VENDORS PRODUCTS UPDATED PUBLISHED CVSS
CVE-2024-25833 1F Logic 1Datacube3 Jan 16, 2025 Feb 29, 2024 N/A· v4 9.8 CRITICAL· v3 N/A· v2 F-logic DataCube3 v1.0 is vulnerable to unauthenticated SQL injection, which could allow an unauthenticated malicious actor to execute arbitrary SQL queries in database.
CVE-2024-25832 1F Logic 1Datacube3 Mar 27, 2025 Feb 29, 2024 N/A· v4 8.8 HIGH· v3 N/A· v2 F-logic DataCube3 v1.0 is vulnerable to unrestricted file upload, which could allow an authenticated malicious actor to upload a file of dangerous type by manipulating the filename extension.
CVE-2024-25831 1F Logic 1Datacube3 Jan 16, 2025 Feb 29, 2024 N/A· v4 5.4 MEDIUM· v3 N/A· v2 F-logic DataCube3 Version 1.0 is affected by a reflected cross-site scripting (XSS) vulnerability due to improper input sanitization. An authenticated, remote attacker can execute arbitrary JavaScript code in the web man...Show more F-logic DataCube3 Version 1.0 is affected by a reflected cross-site scripting (XSS) vulnerability due to improper input sanitization. An authenticated, remote attacker can execute arbitrary JavaScript code in the web management interface.Show less