CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

11 matches found

Cvelist•added 2025/09/02 8:42 a.m.•5 views

CVE-2025-9573 Command Injection in extension "TYPO3 Backup Plus" (ns_backup)

The nsbackup extension through 13.0.2 for TYPO3 allows command injection...

8.6CVSS0.00307EPSS

Exploits0References1

Vulnrichment•added 2025/09/02 8:42 a.m.•1 views

CVE-2025-9573 Command Injection in extension "TYPO3 Backup Plus" (ns_backup)

The nsbackup extension through 13.0.2 for TYPO3 allows command injection...

8.6CVSS6.7AI score0.00307EPSS

Exploits0References1

RedhatCVE•added 2025/05/22 3:29 a.m.•7 views

CVE-2018-19456

The WP Backup+ aka WPbackupplus plugin through 2018-11-22 for WordPress allows remote attackers to obtain sensitive information from server folders and files, as demonstrated by download.sql...

7.5CVSS6.6AI score0.00646EPSS

Exploits0References1

Github Security Blog•added 2025/05/21 7:51 p.m.•14 views

The Backup Plus extension for TYPO3 (ns_backup) has a Predictable Resource Location

The nsbackup extension through 13.0.0 for TYPO3 has a Predictable Resource Location. This allows an unauthenticated remote user to download created backups and configuration files...

8.6CVSS8.6AI score0.00295EPSS

Exploits0References5Affected Software1

OSV•added 2025/05/21 7:51 p.m.•5 views

GHSA-HQ4F-5QJV-FWRG The Backup Plus extension for TYPO3 (ns_backup) has a Predictable Resource Location

The nsbackup extension through 13.0.0 for TYPO3 has a Predictable Resource Location. This allows an unauthenticated remote user to download created backups and configuration files...

8.6CVSS7.3AI score0.00295EPSS

Exploits0References5

Github Security Blog•added 2025/05/21 6:33 p.m.•6 views

The Backup Plus extension for TYPO3 (ns_backup) allows XSS

The nsbackup extension through 13.0.0 for TYPO3 allows XSS...

6.1CVSS6.4AI score0.00182EPSS

Exploits0References4Affected Software1

OSV•added 2025/05/21 6:33 p.m.•4 views

GHSA-463C-JHP2-4MM7 The Backup Plus extension for TYPO3 (ns_backup) allows command injections

The nsbackup extension through 13.0.0 for TYPO3 allows command injection when creating a backup. An authenticated backend user with access to the extensions backend module is required to exploit the vulnerability...

8.5CVSS7.5AI score0.01245EPSS

Exploits0References4

OSV•added 2019/05/07 7:29 p.m.•1 views

CVE-2018-19456

The WP Backup+ aka WPbackupplus plugin through 2018-11-22 for WordPress allows remote attackers to obtain sensitive information from server folders and files, as demonstrated by download.sql...

7.5CVSS5.8AI score

Exploits0References2

Packet Storm•added 2018/12/04 12:0 a.m.•110 views

WordPress WP Backup Plus + 1.0 Database Disclosure

Exploit Title : WordPress WP Backup Plus + 1.0 Database Backup Disclosure Author Discovered By : KingSkrupellos from Cyberizm Digital Security Army Date : 02/12/2018 Vendor Homepage : wpbackupplus.com wplaunchpad.io wordpress.org Software Download Link : N/A Tested On : Windows and Linux Category...

7.4AI score

Exploits0

Patchstack•added 2015/05/15 12:0 a.m.•8 views

WordPress Backup Plus Plugin - Backup Disclosure

This plugin is prone to exposure backup file to unauthorized control vulnerability. Solution Update the plugin...

2.4AI score

Exploits0References1Affected Software1

Packet Storm•added 2015/05/15 12:0 a.m.•51 views

WordPress Backup Plus Backup Disclosure

WordPress 'WP Backup Plus' Plugin Exposure Backup File to Unauthorized Control CWE: CWE-530 Risk: High Author: Hugo Santiago dos Santos Contact: [email protected] Date: 15/05/2015 Vendor Homepage: http://wpbackupplus.com/ Google Dork: inurl:/wp-content/uploads/wp-backup-plus/ PoC :...

0.3AI score

Exploits0

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by