Incus 代码问题漏洞

Incus is a system container and virtual machine manager developed by LXC. Versions of Incus prior to 7.0.0 contained code vulnerabilities. These vulnerabilities stemmed from the backup.GetInfo function’s trust inlining backup configurations, which allowed valid, inline configurations along with...

PT-2026-32649

An exposure of sensitive information to an unauthorized actor vulnerability in Fortinet FortiNDR 7.6.0, FortiNDR 7.4.0 through 7.4.8, FortiNDR 7.2 all versions, FortiNDR 7.1 all versions, FortiNDR 7.0 all versions, FortiVoice 7.0.0 through 7.0.1 may allow a remote authenticated attacker with at...

CVE-2025-1417

In Proget MDM, a low-privileged user can access information about changes contained in backups of all devices managed by the MDM Mobile Device Management. This information include user ids, email addresses, first names, last names and device UUIDs. The last one can be used for exploitation of...

CVE-2025-67745 Myhoard logs backup encryption key in plain text

MyHoard is a daemon for creating, managing and restoring MySQL backups. Starting in version 1.0.1 and prior to version 1.3.0, in some cases, myhoard logs the whole backup info, including the encryption key. Version 1.3.0 fixes the issue. As a workaround, direct logs into /dev/null...

MyHoard 安全漏洞

MyHoard is an open source database backup recovery tool from Aiven Open. A security vulnerability exists in MyHoard versions prior to 1.3.0, which stems from improper logging of backup information and could lead to encryption key disclosure...

EUVD-2025-16001

Malicious code in bioql PyPI...

CVE-2024-7315

The Migration, Backup, Staging WordPress plugin before 0.9.106 does not use sufficient randomness in the filename that is created when generating a backup, which could be bruteforced by attackers to leak sensitive information about said backups...

CVE-2023-6750

The Clone WordPress plugin before 2.4.3 uses buffer files to store in-progress backup informations, which is stored at a publicly accessible, statically defined file path...

CVE-2025-1417 Information disclosure in Proget MDM

In Proget MDM, a low-privileged user can access information about changes contained in backups of all devices managed by the MDM Mobile Device Management. This information include user ids, email addresses, first names, last names and device UUIDs. The last one can be used for exploitation of...

PT-2025-22349 · Unknown · Proget Mdm

Name of the Vulnerable Software and Affected Versions: Proget MDM versions prior to 2.17.5 Description: A low-privileged user can access information about changes contained in backups of all devices managed by the MDM, including user ids, email addresses, first names, last names, and device UUIDs...

Path traversal

The Clone WordPress plugin before 2.4.3 uses buffer files to store in-progress backup informations, which is stored at a publicly accessible, statically defined file path...

WordPress Events Calendar Premium 1.0 Database Disclosure

Exploit Title : WordPress events-calendar-premium Plugins 1.0 Database Backup Information Disclosure Vulnerability Author Discovered By : KingSkrupellos from Cyberizm Digital Security Army Date : 30/11/2018 Vendor Homepage : wordpress.org Tested On : Windows and Linux Category : WebApps Version...

Joomla DJ Image Slider 3.2.3 Database Disclosure

Exploit Title : Joomla comdjimageslider Components All in One 3.2.3 Database Backup Information Disclosure Author Discovered By : KingSkrupellos from Cyberizm Digital Security Army Date : 27/11/2018 Vendor Homepage : joomla.org dj-extensions.com Tested On : Windows and Linux Software Download Lin...

My Little Forum has multiple vulnerabilities

my little forum is a set of Internet forum applications based on PHP and MySQL. The application uses a traditional tree view to display information and supports image uploading, template engine, BB code and emoticons. Cross-site scripting, cross-site request forgery, and backup information...

Zenario ProBusiness Backup Information Disclosure Vulnerability

Zenario is a web-based content management system and multilingual pages. Zenario ProBusiness version 7.3.0.37342 suffers from a backup information disclosure, which can be exploited by an attacker to obtain website backup information...

Wiser SIP Server <= 2.10 Information Disclosure Vulnerability - Active Check

Wiser SIP Server is prone to an information disclosure vulnerability. SPDX-FileCopyrightText: 2014 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only if description...

NO. 0 0 1 school website management system Build 1 1 0 6 2 8 injection vulnerability-vulnerability warning-the black bar safety net

NO. 0 0 1 school website management system modules: 1. Administrator information:website basic information setting, the principal mailbox, etc., database backup,user management, departments and permissions management, etc. 2. School profile:the level of classification, you can add a campus...

Secunia Research: Quicksilver Forums Backup Information Disclosure

====================================================================== Secunia Research 17/03/2010 - Quicksilver Forums Backup Information Disclosure - ====================================================================== Table of Contents Affected...