CVE-2025-55295 qBit Manage Path Traversal Vulnerability

qBit Manage is a tool that helps manage tedious tasks in qBittorrent and automate them. A path traversal vulnerability exists in qbitmanage's web API that allows authenticated users to read arbitrary files from the server filesystem through the restoreconfigfrombackup endpoint. The vulnerability...

Siemens TeleControl Server Basic SQL注入漏洞

Siemens TeleControl Server Basic is an industrial remote controller from Siemens, Germany. Siemens TeleControl Server Basic suffers from a SQL injection vulnerability that originates from a SQL injection in the internal method RestoreFromBackup, which can be exploited by an attacker to bypass...

TeamCity Server < 2023.11.0 Restore From Backup XSS

According to its its self-reported version number, the version of JetBrains TeamCity running on the remote host is a version prior to 2023.11.0. It is, therefore, affected by Cross Side Scripting Vulnerability during a Restore from Backup. Note that Nessus did not actually test for these issues,...

CVE-2024-35302

In JetBrains TeamCity before 2023.11 stored XSS during restore from backup was possible...

CVE-2024-35302

In JetBrains TeamCity before 2023.11 stored XSS during restore from backup was possible...

CVE-2024-35302

CVE-2024-35302 describes a stored cross-site scripting (XSS) vulnerability in JetBrains TeamCity where, prior to version 2023.11, an XSS payload could be stored during the backup restore process. The root cause is an insufficient sanitization/handling of input during restoration, allowing injecte...

CVE-2024-35302

In JetBrains TeamCity before 2023.11 stored XSS during restore from backup was possible...

CVE-2021-32998

The FANUC R-30iA and R-30iB series controllers are vulnerable to an out-of-bounds write, which may allow an attacker to remotely execute arbitrary code. INIT START/restore from backup required...

CVE-2021-32998

The FANUC R-30iA and R-30iB series controllers are vulnerable to an out-of-bounds write, which may allow an attacker to remotely execute arbitrary code. INIT START/restore from backup required...

CVE-2008-4229

Race condition in the Passcode Lock feature in Apple iPhone OS 2.0 through 2.1 and iPhone OS for iPod touch 2.0 through 2.1 allows physically proximate attackers to remove the lock and launch arbitrary applications by restoring the device from a backup...

PT-2008-5522 · Apple · Ios +1

Name of the Vulnerable Software and Affected Versions: Apple iPhone OS versions 2.0 through 2.1 Apple iPhone OS for iPod touch versions 2.0 through 2.1 Description: A race condition exists in the Passcode Lock feature, allowing physically proximate attackers to bypass the lock and launch arbitrar...