Lucene search
+L

618 matches found

NVD
NVD
added 2025/02/27 11:15 p.m.11 views

CVE-2025-24832

Arbitrary file overwrite during home directory recovery due to improper symbolic link handling. The following products are affected: Acronis Backup plugin for cPanel & WHM Linux before build 1.8.4.866, Acronis Backup plugin for cPanel & WHM Linux before build 1.9.1.892, Acronis Backup extension f...

5.5CVSS0.00185EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2025/02/27 11:0 p.m.4 views

CVE-2025-24832

Arbitrary file overwrite during home directory recovery due to improper symbolic link handling. The following products are affected: Acronis Backup plugin for cPanel & WHM Linux before build 1.8.4.866, Acronis Backup plugin for cPanel & WHM Linux before build 1.9.1.892, Acronis Backup extension f...

5.5CVSS5.6AI score0.00185EPSS
Exploits0References1
Cvelist
Cvelist
added 2025/02/27 11:0 p.m.18 views

CVE-2025-24832

Arbitrary file overwrite during home directory recovery due to improper symbolic link handling. The following products are affected: Acronis Backup plugin for cPanel & WHM Linux before build 1.8.4.866, Acronis Backup plugin for cPanel & WHM Linux before build 1.9.1.892, Acronis Backup extension f...

5.5CVSS0.00185EPSS
Exploits0References1
CNNVD
CNNVD
added 2025/02/27 12:0 a.m.4 views

Acronis Backup plugin for cPanel & WHM (Linux)和Acronis Backup extension for Plesk (Linux) 安全漏洞

Acronis Backup plugin for cPanel & WHM Linux and Acronis Backup extension for Plesk Linux are both plug-ins from Acronis Switzerland. A security vulnerability exists in Acronis Backup plugin for cPanel & WHM Linux and Acronis Backup extension for Plesk Linux, which stems from improper handling of...

5.5CVSS5.7AI score0.00185EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2025/02/27 12:0 a.m.4 views

PT-2025-9037 · Acronis · Acronis Backup Plugin For Cpanel & Whm +1

Name of the Vulnerable Software and Affected Versions: Acronis Backup plugin for cPanel & WHM Linux versions 1.8.4.866 and earlier Acronis Backup plugin for cPanel & WHM Linux versions 1.9.1.892 and earlier Acronis Backup extension for Plesk Linux versions 1.8.7.615 and earlier Description: The...

5.5CVSS7.3AI score0.00185EPSS
Exploits0References7
RedhatCVE
RedhatCVE
added 2025/02/04 10:27 p.m.6 views

CVE-2024-8767

Sensitive data disclosure and manipulation due to unnecessary privileges assignment. The following products are affected: Acronis Backup plugin for cPanel & WHM Linux before build 619, Acronis Backup extension for Plesk Linux before build 555, Acronis Backup plugin for DirectAdmin Linux before...

9.9CVSS6.9AI score0.00476EPSS
Exploits0References1
BDU FSTEC
BDU FSTEC
added 2024/12/25 12:0 a.m.8 views

The vulnerability of the backup and data restoration plugins on Acronis Backup software for computers and servers targets programming environments such as cPanel & WHM, Plesk, and DirectAdmin, running on Linux operating systems. This vulnerability allows attackers to gain increased privileges.

The vulnerability of the backup and data restoration plugins on Acronis Backup software for computers and servers, as well as for cPanel & WHM, Plesk, and DirectAdmin operating systems on Linux, is related to errors in link processing. Exploiting this vulnerability allows a malicious actor to...

5.5CVSS5.9AI score0.00196EPSS
Exploits0References4
NVD
NVD
added 2024/11/11 2:15 p.m.16 views

CVE-2024-34014

Arbitrary file overwrite during recovery due to improper symbolic link handling. The following products are affected: Acronis Backup plugin for cPanel & WHM Linux before build 1.8.3.818, Acronis Backup plugin for cPanel & WHM Linux before build 1.9.1.892, Acronis Backup extension for Plesk Linux...

5.5CVSS0.00196EPSS
Exploits0References1
CVE
CVE
added 2024/11/11 1:20 p.m.49 views

CVE-2024-34014

CVE-2024-34014 affects Acronis Backup plugin for cPanel & WHM (Linux) prior to builds 1.8.3.818 and 1.9.1.892, Acronis Backup extension for Plesk prior to 1.8.6.599, and Acronis Backup plugin for DirectAdmin prior to 1.2.2.181. The vulnerability is an arbitrary file overwrite during recovery caus...

5.5CVSS5.5AI score0.00196EPSS
Exploits0References1
Cvelist
Cvelist
added 2024/11/11 1:20 p.m.20 views

CVE-2024-34014

Arbitrary file overwrite during recovery due to improper symbolic link handling. The following products are affected: Acronis Backup plugin for cPanel & WHM Linux before build 1.8.3.818, Acronis Backup plugin for cPanel & WHM Linux before build 1.9.1.892, Acronis Backup extension for Plesk Linux...

5.5CVSS0.00196EPSS
Exploits0References1
CNNVD
CNNVD
added 2024/11/11 12:0 a.m.2 views

Acronis多款产品 安全漏洞

Acronis Backup plugin for cPanel & WHM Linux, etc. is a plugin from Acronis Switzerland. A security vulnerability exists in various Acronis products that stems from improper handling of symbolic links, resulting in arbitrary file overwrites during recovery. The following products and versions are...

5.5CVSS5.6AI score0.00196EPSS
Exploits0References3
BDU FSTEC
BDU FSTEC
added 2024/09/18 12:0 a.m.5 views

The vulnerability of the backup and data restoration plugins on Acronis Backup software for computers and servers targets programming environments such as cPanel & WHM, Plesk, and DirectAdmin, running on Linux operating systems. This vulnerability allows attackers to gain increased privileges.

The vulnerability of the backup and data restoration plugins on Acronis Backup software for computers and servers, as well as for cPanel & WHM, Plesk, and DirectAdmin operating systems on Linux, is related to errors in privilege management. Exploiting this vulnerability can allow attackers to...

9.9CVSS7.8AI score0.00476EPSS
Exploits0References2
NVD
NVD
added 2024/09/17 9:15 a.m.23 views

CVE-2024-8767

Sensitive data disclosure and manipulation due to unnecessary privileges assignment. The following products are affected: Acronis Backup plugin for cPanel & WHM Linux before build 619, Acronis Backup extension for Plesk Linux before build 555, Acronis Backup plugin for DirectAdmin Linux before...

9.9CVSS0.00476EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2024/09/17 8:51 a.m.16 views

CVE-2024-8767

Sensitive data disclosure and manipulation due to unnecessary privileges assignment. The following products are affected: Acronis Backup plugin for cPanel & WHM Linux before build 619, Acronis Backup extension for Plesk Linux before build 555, Acronis Backup plugin for DirectAdmin Linux before...

9.9CVSS6.9AI score0.00476EPSS
Exploits0References1
CVE
CVE
added 2024/09/17 8:51 a.m.87 views

CVE-2024-8767

CVE-2024-8767 affects Acronis Backup plugins/extensions for Linux: cPanel & WHM plugin (pre-619), Plesk extension (pre-555), and DirectAdmin plugin (pre-147). Root cause is unnecessary privilege assignment that enables sensitive data disclosure and data manipulation with network access and low pr...

9.9CVSS7.1AI score0.00476EPSS
Exploits0References1
CNNVD
CNNVD
added 2024/09/17 12:0 a.m.5 views

Acronis多款产品 安全漏洞

Acronis Backup plugin for cPanel & WHM Linux, etc. is a plugin from Acronis Switzerland. A security vulnerability exists in various Acronis products, which stems from an unnecessary privilege assignment leading to the disclosure of sensitive data. The following products and versions are affected:...

9.9CVSS9.1AI score0.00476EPSS
Exploits0References2
GithubExploit
GithubExploit
added 2024/05/26 6:56 a.m.783 views

Exploit for Open Redirect in Plesk Obsidian

Badges !MIT Licensehttps://img.shields.io/badge/Licens...

6.1CVSS6.5AI score0.02157EPSS
Exploits3
Positive Technologies
Positive Technologies
added 2024/04/29 12:0 a.m.5 views

PT-2024-9769 · Directadmin +3 · Directadmin +5

Name of the Vulnerable Software and Affected Versions: Acronis Backup plugin for cPanel & WHM Linux versions before build 818 Acronis Backup extension for Plesk Linux versions before build 599 Acronis Backup plugin for DirectAdmin Linux versions before build 181 Description: The issue is related ...

5.5CVSS7.4AI score0.00196EPSS
Exploits0References9
NVD
NVD
added 2023/11/27 2:15 p.m.20 views

CVE-2023-4931

Uncontrolled search path element vulnerability in Plesk Installer affects version 3.27.0.0. A local attacker could execute arbitrary code by injecting DLL files into the same folder where the application is installed, resulting in DLL hijacking in edputil.dll, samlib.dll, urlmon.dll, sspicli.dll,...

7.8CVSS0.00249EPSS
Exploits0References2
OSV
OSV
added 2023/11/27 2:15 p.m.6 views

CVE-2023-4931

Uncontrolled search path element vulnerability in Plesk Installer affects version 3.27.0.0. A local attacker could execute arbitrary code by injecting DLL files into the same folder where the application is installed, resulting in DLL hijacking in edputil.dll, samlib.dll, urlmon.dll, sspicli.dll,...

7.8CVSS6AI score0.00249EPSS
Exploits0References2
Rows per page
Query Builder