Lucene search
+L

31 matches found

cnvd
cnvd
added 2019/06/10 12:0 a.m.4 views

UrBackup Buffer Overflow Vulnerability

UrBackup is an open source backup and recovery system for multiple platforms. A buffer overflow vulnerability exists in UrBackup version 2.2.6. The vulnerability stems from a networked system or product performing operations in memory without properly validating data boundaries, resulting in...

7.5CVSS7.4AI score0.01376EPSS
Exploits0References1
prion
prion
added 2019/06/07 4:29 p.m.15 views

Null pointer dereference

In UrBackup 2.2.6, an attacker can send a malformed request to the client over the network, and trigger a fileservplugin/CClientThread.cpp CClientThread::GetFileHashAndMetadata NULL pointer dereference, leading to shutting down the client application...

5CVSS7.5AI score0.01376EPSS
Exploits0References2Affected Software1
nvd
nvd
added 2019/06/07 4:29 p.m.27 views

CVE-2018-20014

In UrBackup 2.2.6, an attacker can send a malformed request to the client over the network, and trigger a fileservplugin/CClientThread.cpp CClientThread::GetFileHashAndMetadata NULL pointer dereference, leading to shutting down the client application...

7.5CVSS7.5AI score0.01376EPSS
Exploits0References2
cvelist
cvelist
added 2019/06/07 3:57 p.m.22 views

CVE-2018-20014

In UrBackup 2.2.6, an attacker can send a malformed request to the client over the network, and trigger a fileservplugin/CClientThread.cpp CClientThread::GetFileHashAndMetadata NULL pointer dereference, leading to shutting down the client application...

7.5AI score0.01376EPSS
Exploits0References2
cve
cve
added 2019/06/07 3:57 p.m.48 views

CVE-2018-20014

CVE-2018-20014 affects UrBackup 2.2.6. A malformed network request can trigger a NULL pointer dereference in fileservplugin/CClientThread.cpp::GetFileHashAndMetadata, causing the client application to shut down. The available documents do not provide exploit details, affected versions beyond 2.2....

7.5CVSS7.5AI score0.01376EPSS
Exploits0References2Affected Software1
cnvd
cnvd
added 2017/12/18 12:0 a.m.5 views

UrBackup Server Cross-Site Scripting Vulnerability

UrBackup is an easy to install open source client/server backup system . A cross-site scripting vulnerability exists in UrBackup Server before 2.1.20. A remote attacker can exploit this vulnerability to inject arbitrary web script or HTML via the action parameter...

6.1CVSS6AI score0.00765EPSS
Exploits0References1
prion
prion
added 2017/12/17 5:29 a.m.14 views

Cross site scripting

Cross - site scripting XSS vulnerability in UrBackup Server before 2.1.20 allows remote attackers to inject arbitrary web script or HTML via the action parameter...

4.3CVSS6AI score0.00765EPSS
Exploits0References2Affected Software1
osv
osv
added 2017/12/17 5:29 a.m.6 views

CVE-2017-16950

Cross - site scripting XSS vulnerability in UrBackup Server before 2.1.20 allows remote attackers to inject arbitrary web script or HTML via the action parameter...

6.1CVSS5.7AI score0.00765EPSS
Exploits0References2
nvd
nvd
added 2017/12/17 5:29 a.m.22 views

CVE-2017-16950

Cross - site scripting XSS vulnerability in UrBackup Server before 2.1.20 allows remote attackers to inject arbitrary web script or HTML via the action parameter...

6.1CVSS6.1AI score0.00765EPSS
Exploits0References2
cve
cve
added 2017/12/17 5:0 a.m.45 views

CVE-2017-16950

CVE-2017-16950 is an XSS in UrBackup Server prior to 2.1.20. The web UI fails to properly sanitize the action parameter, allowing a remote attacker to inject arbitrary web script or HTML via that parameter. Affected product: UrBackup Server (before 2.1.20); root cause: insufficient input sanitiza...

6.1CVSS6AI score0.00765EPSS
Exploits0References2Affected Software1
cvelist
cvelist
added 2017/12/17 5:0 a.m.21 views

CVE-2017-16950

Cross - site scripting XSS vulnerability in UrBackup Server before 2.1.20 allows remote attackers to inject arbitrary web script or HTML via the action parameter...

6.1AI score0.00765EPSS
Exploits0References2
Rows per page
Query Builder