Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
vinchin vinchin backup and recovery vulnerabilities and exploits
(subscribe to this query)
9.8
CVSSv3
CVE-2024-22901
Vinchin Backup & Recovery v7.2 exists to use default MYSQL credentials.
Vinchin Vinchin Backup And Recovery
1 Github repository
9.8
CVSSv3
CVE-2024-22902
Vinchin Backup & Recovery v7.2 exists to be configured with default root credentials.
Vinchin Vinchin Backup And Recovery
1 Github repository
9.8
CVSSv3
CVE-2023-45498
VinChin Backup & Recovery v5.0.*, v6.0.*, v6.7.*, and v7.0.* exists to contain a command injection vulnerability.
Vinchin Vinchin Backup And Recovery
9.8
CVSSv3
CVE-2023-45499
VinChin Backup & Recovery v5.0.*, v6.0.*, v6.7.*, and v7.0.* exists to contain hardcoded credentials.
Vinchin Vinchin Backup And Recovery
9.8
CVSSv3
CVE-2022-35866
This vulnerability allows remote malicious users to bypass authentication on affected installations of Vinchin Backup and Recovery 6.5.0.17561. Authentication is not required to exploit this vulnerability. The specific flaw exists within the configuration of the MySQL server. The...
Vinchin Vinchin Backup And Recovery 6.5.0.17561
8.8
CVSSv3
CVE-2024-22899
Vinchin Backup & Recovery v7.2 exists to contain an authenticated remote code execution (RCE) vulnerability via the syncNtpTime function.
Vinchin Vinchin Backup And Recovery
1 Github repository
8.8
CVSSv3
CVE-2024-22900
Vinchin Backup & Recovery v7.2 exists to contain an authenticated remote code execution (RCE) vulnerability via the setNetworkCardInfo function.
Vinchin Vinchin Backup And Recovery
8.8
CVSSv3
CVE-2024-22903
Vinchin Backup & Recovery v7.2 exists to contain an authenticated remote code execution (RCE) vulnerability via the deleteUpdateAPK function.
Vinchin Vinchin Backup And Recovery
1 Github repository
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-21111
CVE-2024-32884
IDOR
CVE-2023-1000
CVE-2024-33260
CVE-2024-3682
reflected XSS
race condition
CVE-2024-3400
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started