13 matches found
CVE-2026-4031
The Database Backup for WordPress plugin for WordPress is vulnerable to authorization bypass in all versions up to, and including, 2.5.2. This is due to the plugin not restricting access to the wpdbtempdir parameter, which controls where database backups are written. This makes it possible for...
CVE-2026-4031
The Database Backup for WordPress plugin for WordPress is vulnerable to authorization bypass in all versions up to, and including, 2.5.2. This is due to the plugin not restricting access to the wpdbtempdir parameter, which controls where database backups are written. This makes it possible for...
CVE-2026-4031 Database Backup for WordPress <= 2.5.2 - Missing Authorization to Unauthenticated Database Backup Interception
The Database Backup for WordPress plugin for WordPress is vulnerable to authorization bypass in all versions up to, and including, 2.5.2. This is due to the plugin not restricting access to the wpdbtempdir parameter, which controls where database backups are written. This makes it possible for...
EUVD-2026-30274
The Database Backup for WordPress plugin for WordPress is vulnerable to authorization bypass in all versions up to, and including, 2.5.2. This is due to the plugin not restricting access to the wpdbtempdir parameter, which controls where database backups are written. This makes it possible for...
The vulnerability of the Scheduled Backups function in the Nagios XI monitoring tool allows a malicious individual to gain unauthorized access to protected information.
The vulnerability of the Scheduled Backups function in the Nagios XI monitoring tool is related to synchronization errors when using a shared resource during port scanning. Exploiting this vulnerability can allow an attacker operating remotely to gain unauthorized access to protected information...
PT-2023-7763 · Nagios · Nagios Xi
Name of the Vulnerable Software and Affected Versions: Nagios XI affected versions not specified Description: The issue is related to the Scheduled Backups function in Nagios XI, which is associated with synchronization errors when using a shared resource during port scanning. Exploitation of thi...
Security Bulletin: TSM Client Scheduler Denial Of Service Vulnerability (CVE-2013-0471)
Abstract A Denial of Service vulnerability exists in the IBM Tivoli Storage Manager TSM client traditional scheduler Content DESCRIPTION: A Denial of Service vulnerability in the TSM client traditional scheduler allows a remote attacker to disable the traditional scheduler when it is in Prompted...
[SECURITY] Fedora 28 Update: drupal7-backup_migrate-3.5-1.fc28
Back up and restore your Drupal MySQL database, code, and files or migrate a site between environments. Backup and Migrate supports gzip, bzip and zip compression as well as automatic scheduled backups. With Backup and Migrate you can dump some or all of your database tables to a file download or...
Backup and Migrate - Critical - Arbitrary PHP code execution - SA-CONTRIB-2018-004
This module enables you to create manual and scheduled backups of a site, and restore the site from backup. The module doesn't sufficiently identify that its custom permissions are risky and should only be granted to highly trusted roles. Sites using this module should review the permissions page...
CVE-2016-5483: use mysqldump to backup can generate Backdoor-vulnerability warning-the black bar safety net
mysqldump is used to create a MySQL database, logical backup is a commonly used tool. It is in the default configuration, you can generate one. sql file containing the create/delete tables and insert data. In import the dump file, an attacker may be manufactured by a malicious table name to...
CVE-2006-4786
Moodle 1.6.1 and earlier allows remote attackers to obtain sensitive information via 1 help.php and 2 other unspecified vectors involving scheduled backups...
CVE-2006-4786
Moodle 1.6.1 and earlier allows remote attackers to obtain sensitive information via 1 help.php and 2 other unspecified vectors involving scheduled backups...
CVE-2006-4786
Moodle 1.6.1 and earlier allows remote attackers to obtain sensitive information via 1 help.php and 2 other unspecified vectors involving scheduled backups...