Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
vinchin vinchin backup and recovery vulnerabilities and exploits
(subscribe to this query)
8.8
CVSSv3
CVE-2024-22899
Vinchin Backup & Recovery v7.2 exists to contain an authenticated remote code execution (RCE) vulnerability via the syncNtpTime function.
Vinchin Vinchin Backup And Recovery
1 Github repository
8.8
CVSSv3
CVE-2024-22900
Vinchin Backup & Recovery v7.2 exists to contain an authenticated remote code execution (RCE) vulnerability via the setNetworkCardInfo function.
Vinchin Vinchin Backup And Recovery
9.8
CVSSv3
CVE-2024-22901
Vinchin Backup & Recovery v7.2 exists to use default MYSQL credentials.
Vinchin Vinchin Backup And Recovery
1 Github repository
9.8
CVSSv3
CVE-2024-22902
Vinchin Backup & Recovery v7.2 exists to be configured with default root credentials.
Vinchin Vinchin Backup And Recovery
1 Github repository
8.8
CVSSv3
CVE-2024-22903
Vinchin Backup & Recovery v7.2 exists to contain an authenticated remote code execution (RCE) vulnerability via the deleteUpdateAPK function.
Vinchin Vinchin Backup And Recovery
1 Github repository
9.8
CVSSv3
CVE-2023-45498
VinChin Backup & Recovery v5.0.*, v6.0.*, v6.7.*, and v7.0.* exists to contain a command injection vulnerability.
Vinchin Vinchin Backup And Recovery
9.8
CVSSv3
CVE-2023-45499
VinChin Backup & Recovery v5.0.*, v6.0.*, v6.7.*, and v7.0.* exists to contain hardcoded credentials.
Vinchin Vinchin Backup And Recovery
9.8
CVSSv3
CVE-2022-35866
This vulnerability allows remote malicious users to bypass authentication on affected installations of Vinchin Backup and Recovery 6.5.0.17561. Authentication is not required to exploit this vulnerability. The specific flaw exists within the configuration of the MySQL server. The...
Vinchin Vinchin Backup And Recovery 6.5.0.17561
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-32886
insecure direct object reference
CVE-2024-34342
file inclusion
CVE-2024-34562
CVE-2024-34347
CVE-2024-26026
CVE-2024-4647
unprivileged
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started