Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
backup vulnerabilities and exploits
(subscribe to this query)
6.1
CVSSv3
CVE-2023-35775
Unauth. Reflected Cross-Site Scripting (XSS) vulnerability in WP Backup Solutions WP Backup Manager plugin <= 1.13.1 versions.
Wp Backup Solutions Project Wp Backup Solutions
6.5
CVSSv3
CVE-2020-16171
An issue exists in Acronis Cyber Backup prior to 12.5 Build 16342. Some API endpoints on port 9877 under /api/ams/ accept an additional custom Shard header. The value of this header is afterwards used in a separate web request issued by the application itself. This can be abused ...
Acronis Cyber Backup
Acronis Cyber Backup 12.5
NA
CVE-2005-2079
Heap-based buffer overflow in the Admin Plus Pack Option for VERITAS Backup Exec 9.0 up to and including 10.0 for Windows Servers allows remote malicious users to execute arbitrary code.
Symantec Veritas Backup Exec 10.0 Rev.5484
Symantec Veritas Backup Exec 9.0 Rev.4367
Symantec Veritas Backup Exec 9.0 Rev.4454
Symantec Veritas Backup Exec 9.1 Rev.4691
NA
CVE-2005-0771
VERITAS Backup Exec Server (beserver.exe) 9.0 up to and including 10.0 for Windows allows remote unauthenticated malicious users to modify the registry by calling methods to the RPC interface on TCP port 6106.
Symantec Veritas Backup Exec 10.0 Rev.5484
Symantec Veritas Backup Exec 9.0 Rev.4367
Symantec Veritas Backup Exec 9.0 Rev.4454
Symantec Veritas Backup Exec 9.1 Rev.4691
NA
CVE-2006-5143
Multiple buffer overflows in CA BrightStor ARCserve Backup r11.5 SP1 and previous versions, r11.1, and 9.01; BrightStor ARCserve Backup for Windows r11; BrightStor Enterprise Backup 10.5; Server Protection Suite r2; and Business Protection Suite r2 allow remote malicious users to...
Ca Brightstor Arcserve Backup 11
Broadcom Brightstor Arcserve Backup 9.01
Broadcom Brightstor Arcserve Backup 11.1
Broadcom Server Protection Suite 2
Broadcom Brightstor Arcserve Backup
Broadcom Brightstor Enterprise Backup 10.5
Broadcom Business Protection Suite 2.0
4 EDB exploits
NA
CVE-2001-1346
Computer Associates ARCserveIT 6.61 and 6.63 (also called ARCservIT) allows local users to overwrite arbitrary files via a symlink attack on the temporary files (1) asagent.tmp or (2) inetd.tmp.
Ca Arcserve Backup 6.63
Broadcom Arcserve Backup 6.61
2 EDB exploits
NA
CVE-2013-4575
Heap-based buffer overflow in the utility program in the Linux agent in Symantec Backup Exec 2010 R3 prior to 2010 R3 SP3 and 2012 before SP2 allows remote malicious users to cause a denial of service (agent crash) or possibly execute arbitrary code via unspecified vectors.
Symantec Backup Exec 2010
Symantec Backup Exec 2012
NA
CVE-2013-4676
Multiple cross-site scripting (XSS) vulnerabilities in Symantec Backup Exec 2010 R3 prior to 2010 R3 SP3 and 2012 before SP2 allow remote malicious users to inject arbitrary web script or HTML via vectors involving a (1) custom-reports generation page, (2) Storage Devices creatio...
Symantec Backup Exec 2010 R3
Symantec Backup Exec 2012
7.5
CVSSv3
CVE-2014-10076
The wp-db-backup plugin 2.2.4 for WordPress relies on a five-character string for access control, which makes it easier for remote malicious users to read backup archives via a brute-force attack.
Wp-db-backup Project Wp-db-backup 2.2.4
9.8
CVSSv3
CVE-2017-1002016
Vulnerability in wordpress plugin flickr-picture-backup v0.7, The code in flickr-picture-download.php doesn't check to see if the user is authenticated or that they have permission to upload files.
Flickr Picture Backup Project Flickr Picture Backup 0.7
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
authentication bypass
CVE-2024-30051
remote
CVE-2024-27954
CVE-2023-51483
CVE-2023-47782
SSRF
CVE-2024-24715
CVE-2023-52424
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
9
10
NEXT »