600 matches found
PT-2025-3533 · Zrlog · Zrlog
Name of the Vulnerable Software and Affected Versions: Zrlog backup-sql-file.jar version 3.0.31 Description: The issue allows a remote attacker to obtain sensitive information. This is achieved via the BackupController.java file. Recommendations: For Zrlog backup-sql-file.jar version 3.0.31,...
CVE-2025-24104
CVE-2025-24104 concerns Apple platforms (iPadOS 17.7.4, iOS 18.3, iPadOS 18.3) where the backup restore process could incorrectly handle symlinks, allowing a malicious backup to point system file reads/writes and potentially modify protected system files. Apple’s advisories indicate the issue is ...
CVE-2025-24104
This issue was addressed with improved handling of symlinks. This issue is fixed in iOS 18.3 and iPadOS 18.3, iPadOS 17.7.4. Restoring a maliciously crafted backup file may lead to modification of protected system files...
CVE-2024-56067
CVE-2024-56067 affects the WordPress plugin WP SuperBackup (versions
CVE-2024-56067 WordPress WP SuperBackup plugin <= 2.3.3 - Unauthenticated Backup File Download Vulnerability
Missing Authorization vulnerability in azzaroco WP SuperBackup indeed-wp-superbackup allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects WP SuperBackup: from n/a through = 2.3.3...
CVE-2024-56353
In JetBrains TeamCity before 2024.12 backup file exposed user credentials and session cookies...
CVE-2024-56353
In JetBrains TeamCity before 2024.12 backup file exposed user credentials and session cookies...
CVE-2024-56353
JetBrains TeamCity is affected by CVE-2024-56353. Before version 2024.12, backup files can disclose sensitive data, exposing user credentials and session cookies. Root cause is exposure via backup artifacts; impact is information disclosure with confidentiality at risk (credentials and cookies). ...
CVE-2024-56353
In JetBrains TeamCity before 2024.12 backup file exposed user credentials and session cookies...
CVE-2024-56353
In JetBrains TeamCity before 2024.12 backup file exposed user credentials and session cookies...
JetBrains TeamCity 安全漏洞
JetBrains TeamCity is a set of distributed build management and continuous integration tools from the Czech company JetBrains. The tool provides continuous unit testing, code quality analysis and build problem analysis reports and other features. An information disclosure vulnerability exists in...
Discourse 3.4.x < 3.4.0.beta4 Multiple Vulnerabilities
Discourse is prone to multiple vulnerabilities. SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:discourse:discourse"; ifdescripti...
CVE-2024-53991 Potential Backup file leaked via Nginx in Discourse
Discourse is an open source platform for community discussion. This vulnerability only impacts Discourse instances configured to use FileStore::LocalStore which means uploads and backups are stored locally on disk. If an attacker knows the name of the Discourse backup file, the attacker can trick...
CVE-2024-53991 Potential Backup file leaked via Nginx in Discourse
Discourse is an open source platform for community discussion. This vulnerability only impacts Discourse instances configured to use FileStore::LocalStore which means uploads and backups are stored locally on disk. If an attacker knows the name of the Discourse backup file, the attacker can trick...
WordPress WP SuperBackup plugin <= 2.3.3 - Unauthenticated Backup File Download Vulnerability
Unauthenticated Backup File Download Vulnerability discovered by Dave Jong Patchstack in WordPress Plugin WP SuperBackup versions = 2.3.3...
CVE-2024-12482
A vulnerability was found in cjbi wetech-cms 1.0/1.1/1.2. It has been rated as problematic. Affected by this issue is the function backup of the file wetech-cms-master\wetech-basic-common\src\main\java\tech\wetech\basic\util\BackupFileUtil.java of the component Database Backup Handler. The...
CVE-2020-11918
An issue was discovered in Siime Eye 14.1.00000001.3.330.0.0.3.14. When a backup file is created through the web interface, information on all users, including passwords, can be found in cleartext in the backup file. An attacker capable of accessing the web interface can create the backup file...
CVE-2020-11918
An issue was discovered in Siime Eye 14.1.00000001.3.330.0.0.3.14. When a backup file is created through the web interface, information on all users, including passwords, can be found in cleartext in the backup file. An attacker capable of accessing the web interface can create the backup file...
PT-2024-10772 · Epson +1 · Epson Products +1
Name of the Vulnerable Software and Affected Versions: Siime Eye version 14.1.00000001.3.330.0.0.3.14 Description: An issue was discovered in Siime Eye where information on all users, including passwords, can be found in cleartext in a backup file created through the web interface. An attacker...
CVE-2024-10028
The Everest Backup – WordPress Cloud Backup, Migration, Restore & Cloning Plugin plugin for WordPress is vulnerable to Sensitive Information Exposure in all versions up to, and including, 2.2.13 via the exposed process stats file during the backup process. This makes it possible for unauthenticat...