61 matches found
CVE-2025-13108
IBM DB2 Merge Backup for Linux, UNIX and Windows 12.1.0.0 could allow an attacker to access sensitive information in memory due to the buffer not properly clearing resources...
CVE-2025-33124
IBM DB2 Merge Backup for Linux, UNIX and Windows 12.1.0.0 could allow an authenticated user to cause the program to crash due to the incorrect calculation of a buffer size...
PT-2026-20242
Name of the Vulnerable Software and Affected Versions IBM DB2 Merge Backup versions 12.1.0.0 Description An authenticated user can cause IBM DB2 Merge Backup to crash due to a buffer overflow when a buffer is allocated on the stack and subsequently overwritten. Recommendations At the moment, ther...
CVE-2026-26225
Intego Personal Backup, a macOS backup utility that allows users to create scheduled backups and bootable system clones, contains a local privilege escalation vulnerability. Backup task definitions are stored in a location writable by non-privileged users while being processed with elevated...
Path Traversal
getgrav/grav is vulnerable to path traversal. The vulnerability is due to insufficient input sanitization in the backup tool, which allows an authenticated attacker with administrative privileges to exploit user-supplied paths and access arbitrary files outside the intended webroot directory...
GS Yuasa International FULLBACK Manager Pro 代码问题漏洞
GS Yuasa International FULLBACK Manager Pro is a backup management tool from GS Yuasa International, Japan. A code issue vulnerability exists in GS Yuasa International FULLBACK Manager Pro that originates from an unquoted file path and could lead to the execution of arbitrary code by a user with...
[SECURITY] Fedora 42 Update: restic-0.18.1-1.fc42
Fast, secure, efficient backup program. restic supports the following backends for storing backups natively: Local directory sftp server via SSH HTTP REST server protocol, rest-server Amazon S3 either from Amazon or using the Minio server OpenStack Swift BackBlaze B2 Microsoft Azure Blob Storage...
[SECURITY] Fedora 43 Update: restic-0.18.1-1.fc43
Fast, secure, efficient backup program. restic supports the following backends for storing backups natively: Local directory sftp server via SSH HTTP REST server protocol, rest-server Amazon S3 either from Amazon or using the Minio server OpenStack Swift BackBlaze B2 Microsoft Azure Blob Storage...
CVE-2025-66302
Grav is a file-based Web platform. Prior to 1.8.0-beta.27, A path traversal vulnerability has been identified in Grav CMS, allowing authenticated attackers with administrative privileges to read arbitrary files on the underlying server filesystem. This vulnerability arises due to insufficient inp...
Grav vulnerable to Path Traversal allowing server files backup
Summary A path traversal vulnerability has been identified in Grav CMS, versions 1.7.49.5 , allowing authenticated attackers with administrative privileges to read arbitrary files on the underlying server filesystem. This vulnerability arises due to insufficient input sanitization in the backup...
EUVD-2025-200108
Grav vulnerable to Path Traversal allowing server files backup...
CVE-2025-66302
Grav is a file-based Web platform. Prior to 1.8.0-beta.27, A path traversal vulnerability has been identified in Grav CMS, allowing authenticated attackers with administrative privileges to read arbitrary files on the underlying server filesystem. This vulnerability arises due to insufficient inp...
CVE-2025-66302 Grav vulnerable to Path Traversal allowing server files backup
Grav is a file-based Web platform. Prior to 1.8.0-beta.27, A path traversal vulnerability has been identified in Grav CMS, allowing authenticated attackers with administrative privileges to read arbitrary files on the underlying server filesystem. This vulnerability arises due to insufficient inp...
CVE-2025-66302 Grav vulnerable to Path Traversal allowing server files backup
Grav is a file-based Web platform. Prior to 1.8.0-beta.27, A path traversal vulnerability has been identified in Grav CMS, allowing authenticated attackers with administrative privileges to read arbitrary files on the underlying server filesystem. This vulnerability arises due to insufficient inp...
CVE-2025-66302 Grav vulnerable to Path Traversal allowing server files backup
Grav is a file-based Web platform. Prior to 1.8.0-beta.27, A path traversal vulnerability has been identified in Grav CMS, allowing authenticated attackers with administrative privileges to read arbitrary files on the underlying server filesystem. This vulnerability arises due to insufficient inp...
CVE-2025-66302
Grav CMS path traversal vulnerability (CVE-2025-66302) exists prior to 1.8.0-beta.27 in the backup tool’s input sanitization, enabling authenticated administrators to read arbitrary files on the server filesystem outside the webroot. Impact depends on the privileges of the Grav process account; f...
PT-2025-48561
Name of the Vulnerable Software and Affected Versions Grav versions prior to 1.8.0-beta.27 Description Grav CMS contains a path traversal flaw. Authenticated attackers with administrative privileges can read arbitrary files on the server filesystem. This is due to inadequate input sanitization...
ASUSTOR Backup Plan(ABP)和ASUSTOR EZSync(AES) 安全漏洞
ASUSTOR Backup Plan ABP and ASUSTOR EZSync AES are both products of Chinese Taipei Huayun Technology ASUSTOR.ASUSTOR Backup Plan is a Windows backup tool.ASUSTOR EZSync is a bi-directional file synchronization for NAS devices. ASUSTOR EZSync is a bi-directional file synchronization tool for NAS...
EUVD-2018-1334
Malware in sbrugna...
EUVD-2017-2471
Malware in sbrugna...