Lucene search
+L

29 matches found

nvd
nvd
added 2026/07/09 8:16 a.m.9 views

CVE-2026-8996

The Backup and Staging by WP Time Capsule plugin for WordPress is vulnerable to Sensitive Information Exposure in all versions up to, and including, 1.22.26 via the downloadrecentdecryptedfilewptc. This makes it possible for authenticated attackers, with subscriber-level access and above, to...

6.5CVSS0.0027EPSS
Exploits0References8
cve
cve
added 2026/07/09 6:52 a.m.11 views

CVE-2026-8996

The CVE-2026-8996 entry describes a Sensitive Information Exposure in the WordPress plugin “Backup and Staging by WP Time Capsule” up to version 1.22.26. The flaw is exposed via download_recent_decrypted_file_wptc, enabling authenticated users with subscriber-level access (or higher) to obtain th...

6.5CVSS5.8AI score0.0027EPSS
Exploits0References8
redhatcve
redhatcve
added 2026/06/05 7:49 p.m.16 views

CVE-2026-5847

A vulnerability has been found in code-projects Movie Ticketing System 1.0. Impacted is an unknown function of the file /db/moviedb.sql of the component SQL Database Backup File Handler. Such manipulation leads to information disclosure. The attack can be launched remotely. The exploit has been...

5.3CVSS5.2AI score0.00259EPSS
Exploits0References1
redhatcve
redhatcve
added 2026/04/10 7:23 p.m.3 views

CVE-2026-5960

A weakness has been identified in code-projects Patient Record Management System 1.0. This affects an unknown part of the file /db/hcpms.sql of the component SQL Database Backup File Handler. Executing a manipulation can lead to information disclosure. The attack can be launched remotely. The...

5.3CVSS5.6AI score0.00259EPSS
Exploits0References1
nvd
nvd
added 2026/04/09 5:16 a.m.10 views

CVE-2026-5847

A vulnerability has been found in code-projects Movie Ticketing System 1.0. Impacted is an unknown function of the file /db/moviedb.sql of the component SQL Database Backup File Handler. Such manipulation leads to information disclosure. The attack can be launched remotely. The exploit has been...

5.3CVSS0.00259EPSS
Exploits0References5
cvelist
cvelist
added 2026/04/09 5:0 a.m.28 views

CVE-2026-5847 code-projects Movie Ticketing System SQL Database Backup File moviedb.sql information disclosure

A vulnerability has been found in code-projects Movie Ticketing System 1.0. Impacted is an unknown function of the file /db/moviedb.sql of the component SQL Database Backup File Handler. Such manipulation leads to information disclosure. The attack can be launched remotely. The exploit has been...

5.3CVSS0.00259EPSS
Exploits0References5
cvelist
cvelist
added 2026/04/06 3:30 p.m.29 views

CVE-2026-5666 code-projects Online FIR System SQL Database Backup File complaints.sql sensitive information

A vulnerability was detected in code-projects Online FIR System 1.0. Affected by this issue is some unknown functionality of the file /complaints.sql of the component SQL Database Backup File Handler. The manipulation results in insecure storage of sensitive information. The attack may be perform...

6.9CVSS0.00302EPSS
Exploits0References5
euvd
euvd
added 2025/10/03 8:7 p.m.6 views

EUVD-2025-7925

Malicious code in bioql PyPI...

7.1CVSS9AI score0.00154EPSS
Exploits0References2
redhatcve
redhatcve
added 2025/03/26 2:24 p.m.10 views

CVE-2025-30608

Cross-Site Request Forgery CSRF vulnerability in Anthony WordPress SQL Backup wordpress-sql-backup allows Stored XSS.This issue affects WordPress SQL Backup: from n/a through = 3.5.2...

7.1CVSS7.3AI score0.00154EPSS
Exploits0References1
nvd
nvd
added 2025/03/24 2:15 p.m.30 views

CVE-2025-30608

Cross-Site Request Forgery CSRF vulnerability in Anthony WordPress SQL Backup wordpress-sql-backup allows Stored XSS.This issue affects WordPress SQL Backup: from n/a through = 3.5.2...

7.1CVSS0.00154EPSS
Exploits0References1
vulnrichment
vulnrichment
added 2025/03/24 1:47 p.m.12 views

CVE-2025-30608 WordPress SQL Backup plugin <= 3.5.2 - Cross Site Request Forgery (CSRF) Vulnerability

Cross-Site Request Forgery CSRF vulnerability in Anthony WordPress SQL Backup wordpress-sql-backup allows Stored XSS.This issue affects WordPress SQL Backup: from n/a through = 3.5.2...

7.1CVSS7.4AI score0.00154EPSS
Exploits0References1
cve
cve
added 2025/03/24 1:47 p.m.62 views

CVE-2025-30608

CVE-2025-30608 describes a Cross-Site Request Forgery (CSRF) vulnerability in WordPress SQL Backup that enables Stored XSS. Affected software: WordPress SQL Backup, version range listed as up to 3.5.2 (and from n/a through 3.5.2). The CVSS 3.1 base score is 7.1 (HIGH) with attack vector NETWORK, ...

7.1CVSS7.3AI score0.00154EPSS
Exploits0References1
cvelist
cvelist
added 2025/03/24 1:47 p.m.22 views

CVE-2025-30608 WordPress SQL Backup plugin <= 3.5.2 - Cross Site Request Forgery (CSRF) Vulnerability

Cross-Site Request Forgery CSRF vulnerability in Anthony WordPress SQL Backup wordpress-sql-backup allows Stored XSS.This issue affects WordPress SQL Backup: from n/a through = 3.5.2...

7.1CVSS0.00154EPSS
Exploits0References1
hackerone
hackerone
added 2021/10/04 8:17 a.m.50 views

Semrush: php info file and sql backup at vendor's subdomain

Researcher found open /phpinfo.php and sql backup from mvp app at vendor's subdomain. There was no sensitive data...

6.9AI score
Exploits0
exploitpack
exploitpack
added 2018/02/22 12:0 a.m.44 views

Joomla! Component Proclaim 9.1.1 - Backup File Download

Joomla! Component Proclaim 9.1.1 - Backup File Download Exploit Title: Joomla! Component Proclaim 9.1.1 - Backup Download Dork: N/A Date: 22.02.2018 Vendor Homepage: https://www.christianwebministries.org/ Software Link: https://extensions.joomla.org/extensions/extension/living/religion/proclaim/...

5CVSS7.8AI score0.08069EPSS
Exploits5
seebug
seebug
added 2014/07/01 12:0 a.m.16 views

Acc Auto Dealer Script 5.0 - Persistent XSS and SQL Backup

No description provided by source. Vendor : http://www.accscripts.com/autos/download.html Version: 5.0 /\ == \ /\ \ /\ \ \ \ \ \ \ \ \ /\ \ \ \ \ \ \ \ // // // 01000010 01101001 01001111 ---------------------------------------------------------------- + Acc Auto Dealer Script Persistent XSS...

7.1AI score
Exploits0
seebug
seebug
added 2014/07/01 12:0 a.m.21 views

Advanced Management For Services Sites Bypass Create And Download SQL Backup Vulnerability

No description provided by source...

7.1AI score
Exploits0
packetstorm
packetstorm
added 2012/08/09 12:0 a.m.22 views

School Management System 1.0 Password / Backup Disclosure

Exploit Title: School Management System v 1.0 Remote Create SQL & Files Backup Date: 08/08/2012 Author: L0n3ly-H34rT Homepage: http://se3c.tk/ Contact: [email protected] Software Link: http://nigeriasocialforum.org/DSM1.0.zip Tested on: Linux/Windows P.O.C : 1- If you run this file in brows...

7.4AI score
Exploits0
exploitpack
exploitpack
added 2010/04/04 12:0 a.m.25 views

Advanced Management For Services Sites - Bypass Create And Download SQL Backup

Advanced Management For Services Sites - Bypass Create And Download SQL Backup ======================================================================================== | Title : Advneced Management For Services Sites =by pass Creat And Download Buckup Sql Vulnerability | Author : indoushka | emai...

0.2AI score
Exploits0
exploitdb
exploitdb
added 2010/04/04 12:0 a.m.30 views

Advanced Management For Services Sites - Bypass Create And Download SQL Backup

======================================================================================== | Title : Advneced Management For Services Sites =by pass Creat And Download Buckup Sql Vulnerability | Author : indoushka | email : [email protected] | Home : http://am4ss.com/am4ss.zip | Script : Powere...

7.4AI score
Exploits0
Rows per page
Query Builder