NVD Vulnerabilities

Severity Distribution

Publication Trend

Vulnerability Database

CVE ID	Description	Published	Base Score	Attack Vector	Severity	Actions
CVE-2024-58300	Siklu MultiHaul TG series devices before version 2.0.0 contain an unauthenticated vulnerability that allows remote attackers to retrieve randomly gene...	2025-12-11	8.7	NETWORK	HIGH	NVD
CVE-2024-58298	Compuware iStrobe Web 20.13 contains a pre-authentication remote code execution vulnerability that allows unauthenticated attackers to upload maliciou...	2025-12-11	9.2	NETWORK	CRITICAL	NVD
CVE-2024-58297	PyroCMS v3.0.1 contains a stored cross-site scripting vulnerability in the admin redirects configuration that allows attackers to inject malicious scr...	2025-12-11	5.3	NETWORK	MEDIUM	NVD
CVE-2024-58296	CE Phoenix v3.0.1 contains a stored cross-site scripting vulnerability in the currencies administration panel that allows attackers to inject maliciou...	2025-12-11	5.3	NETWORK	MEDIUM	NVD
CVE-2024-58295	ElkArte Forum 1.1.9 contains a remote code execution vulnerability that allows authenticated administrators to upload malicious PHP files through the ...	2025-12-11	8.6	NETWORK	HIGH	NVD
CVE-2024-58294	FreePBX 16 contains an authenticated remote code execution vulnerability in the API module that allows attackers with valid session credentials to exe...	2025-12-11	8.7	NETWORK	HIGH	NVD
CVE-2024-58293	Akaunting 3.1.8 contains a server-side template injection vulnerability that allows authenticated administrators to execute template expressions in mu...	2025-12-11	8.6	NETWORK	HIGH	NVD
CVE-2024-58292	XMB Forum 1.9.12.06 contains a persistent cross-site scripting vulnerability that allows authenticated administrators to inject malicious JavaScript i...	2025-12-11	5.3	NETWORK	MEDIUM	NVD
CVE-2024-58291	Flatboard 3.2 contains a stored cross-site scripting vulnerability that allows authenticated administrators to inject malicious scripts in forum infor...	2025-12-11	5.3	NETWORK	MEDIUM	NVD
CVE-2024-58290	Xhibiter NFT Marketplace 1.10.2 contains a SQL injection vulnerability in the collections endpoint that allows attackers to manipulate database querie...	2025-12-11	9.3	NETWORK	CRITICAL	NVD
CVE-2024-58289	Microweber 2.0.15 contains a stored cross-site scripting vulnerability that allows authenticated attackers to inject malicious scripts into user profi...	2025-12-11	5.3	NETWORK	MEDIUM	NVD
CVE-2024-58288	Genexus Protection Server 9.7.2.10 contains an unquoted service path vulnerability in the protsrvservice Windows service configuration. Attackers can ...	2025-12-11	8.7	NETWORK	HIGH	NVD
CVE-2024-58287	reNgine 2.2.0 contains a command injection vulnerability in the nmap_cmd parameter of scan engine configuration that allows authenticated attackers to...	2025-12-11	8.7	NETWORK	HIGH	NVD
CVE-2024-58286	dizqueTV 1.5.3 contains a remote code execution vulnerability that allows attackers to inject arbitrary commands through the FFMPEG Executable Path se...	2025-12-11	9.3	NETWORK	CRITICAL	NVD
CVE-2025-66590	In AzeoTech DAQFactory release 20.7 (Build 2555), an Out-of-bounds Write vulnerability can be exploited by an attacker to cause the program to write d...	2025-12-11	8.4	LOCAL	HIGH	NVD

Loading vulnerability details...

Description

EPSS Score

N/A

Exploit Prediction Scoring System

Dates

Published:

Last Modified:

CVSS v3.1 metrics not available for this vulnerability.

CVSS v4.0 metrics not available for this vulnerability.

CVSS v2.0 metrics not available for this vulnerability.

Weakness Information (CWE)

No CWE information available for this vulnerability.

Affected Products

No affected product information available for this vulnerability.

References

No references available for this vulnerability.