CVE-2025-70830

A Server-Side Template Injection SSTI vulnerability in the Freemarker template engine of Datart v1.0.0-rc.3 allows authenticated attackers to execute arbitrary code via injecting crafted Freemarker template syntax into the SQL script field...

CVE-2025-70830

A Server-Side Template Injection SSTI vulnerability in the Freemarker template engine of Datart v1.0.0-rc.3 allows authenticated attackers to execute arbitrary code via injecting crafted Freemarker template syntax into the SQL script field...

Linux Distros Unpatched Vulnerability : CVE-2007-4306

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Multiple cross-site scripting XSS vulnerabilities in phpMyAdmin 2.10.3 allow remote attackers to inject arbitrary web script or HTML via the 1 unlimnumrows, 2...

Update Rollup 3 for System Center 2022 Orchestrator

Update Rollup 3 for System Center 2022 Orchestrator Introduction This article describes the issues that are fixed in Update Rollup 3 for Microsoft System Center Orchestrator 2022. This article also contains the installation instructions for this update. Issues that are fixed Read Line activity...

CVE-2022-21511

Vulnerability in the Oracle Database - Enterprise Edition Recovery component of Oracle Database Server. For supported versions that are affected see note. Easily exploitable vulnerability allows high privileged attacker having EXECUTE ON DBMSIR.EXECUTESQLSCRIPT privilege with network access via...

CVE-2022-23221

H2 Console before 2.1.210 allows remote attackers to execute arbitrary code via a jdbc:h2:mem JDBC URL containing the IGNOREUNKNOWNSETTINGS=TRUE;FORBIDCREATION=FALSE;INIT=RUNSCRIPT substring, a different vulnerability than CVE-2021-42392...

SQL Injection

Centreon Web is vulnerable to SQL injection. The hostid parameter in makeXMLListServices.php is directly appended to the SQL query, allowing an attacker to inject and execute arbitrary SQL script through the affected parameter...

Veeam ONE: SQL Express Maximum Database Size Limitation

Challenge When the Veeam ONE database is located in a SQL Express instance, if the database reaches the maximum allowed size, Veeam ONE will not be able to continue data collection, thus affecting data accuracy and alarm generation. Cause If you choose to host the Veeam ONE database on Microsoft...

How to Manually Recreate the Veeam ONE Database

Purpose This article documents how to manually create a new Veeam ONE database. Solution 1. Follow the steps for Creating Veeam ONE Database with SQL Script in the Veeam ONE User Guide. The link in this step will direct you to the most recent Veeam ONE version's user guide. If you are rebuilding...

Uninstalling Veeam Backup & Replication plug-in for Labtech

Challenge Uninstalling the plug-in using Plugin Manager only removes it from the list of plugins but leaves Veeam components reports, monitors, etc. and database data intact. Cause Uninstalling the Veeam Backup & Replication Plug-in by means of the LabTech Plugin Manager is not supported. If you...

Crlf injection

CRLF injection vulnerability in pgdump in PostgreSQL 8.3.x before 8.3.18, 8.4.x before 8.4.11, 9.0.x before 9.0.7, and 9.1.x before 9.1.3 allows user-assisted remote attackers to execute arbitrary SQL commands via a crafted file containing object names with newlines, which are inserted into an SQ...

CVE-2012-0868

CRLF injection vulnerability in pgdump in PostgreSQL 8.3.x before 8.3.18, 8.4.x before 8.4.11, 9.0.x before 9.0.7, and 9.1.x before 9.1.3 allows user-assisted remote attackers to execute arbitrary SQL commands via a crafted file containing object names with newlines, which are inserted into an SQ...

How to apply a SQL script to Veeam Backup & Replication/Veeam Backup Enterprise Manager Database

Purpose This article documents the procedure for applying a SQL script to a Microsoft SQL Server or PostgreSQL Database. Specifically, this article is targeted at the scenario where a support engineer has provided a .sql script to modify the Veeam Backup & Replication or Veeam Backup Enterprise...

How to Edit Multiple Alarms at the Same Time

Purpose This article provides supplemental information regarding batch alarm editing. As documented in the Veeam ONE Monitoring Guide, in batch editing mode, you can only change the Assignment, Notifications, Actions, and Suppression alarm settings. Solution For information about modifying multip...

Error executing SQL script during upgrade to Veeam Backup & Replication 6.0.0

Veeam Backup & Replication upgrade to version 6.0.0 fails with the error: Error executing SQL script DBupdate.sqlfilled. Line 5225. There is already an object named 'db50update in the database'...

SureBackup SQL Script Verification

A SureBackup job fails with "SQL Server script, path VmConnectionTester.exe, ErrCode 10061" due to port connection failures...

Preemptive Protection against Microsoft SQL Server sp_replwritetovarbin Limited Memory Overwrite Vulnerability (MS09-004)

A remote code execution vulnerability has been reported in Microsoft SQL Server. Microsoft SQL Server is a relational database management system RDBMS. The flaw is in the way that SQL Server checks parameters in the "spreplwritetovarbin" extended stored procedure. By sending a specially crafted S...

createdirectory2sysdba.sql

--note windows adds 0D 0A to end as cTRL LF --WINDOWS VERSION 10.1 DECLARE fi UTLFILE.FILETYPE; bu RAW32767; bu2 varchar232767; bu3 varchar232767; BEGIN...

CVE-2005-1392

The SQL install script in phpMyAdmin 2.6.2 is created with world-readable permissions, which allows local users to obtain the initial database password by reading the script...

CVE-2005-1392

The SQL install script in phpMyAdmin 2.6.2 is created with world-readable permissions, which allows local users to obtain the initial database password by reading the script...