CVE-2021-4468

PLANEX CS-QP50F-ING2 smart cameras expose a configuration backup interface over HTTP that does not require authentication. A remote, unauthenticated attacker can directly retrieve a compressed configuration backup file from the device. The backup contains sensitive configuration information,...

CVE-2025-63891

Information Disclosure in web-accessible backup file in SourceCodester Simple Online Book Store System allows a remote unauthenticated attacker to disclose full database contents including schema and credential hashes via an unauthenticated HTTP GET request to /obs/database/obsdb.sql...

EUVD-2025-197645

Information Disclosure in web-accessible backup file in SourceCodester Simple Online Book Store System allows a remote unauthenticated attacker to disclose full database contents including schema and credential hashes via an unauthenticated HTTP GET request to /obs/database/obsdb.sql...

CVE-2025-63891

Information Disclosure in web-accessible backup file in SourceCodester Simple Online Book Store System allows a remote unauthenticated attacker to disclose full database contents including schema and credential hashes via an unauthenticated HTTP GET request to /obs/database/obsdb.sql...

CVE-2025-63891

Information Disclosure in web-accessible backup file in SourceCodester Simple Online Book Store System allows a remote unauthenticated attacker to disclose full database contents including schema and credential hashes via an unauthenticated HTTP GET request to /obs/database/obsdb.sql...

PT-2025-47005

Name of the Vulnerable Software and Affected Versions SourceCodester Simple Online Book Store System affected versions not specified Description An information disclosure issue exists in the web-accessible backup file of the SourceCodester Simple Online Book Store System. A remote, unauthenticate...

CVE-2021-20155

Trendnet AC2600 TEW-827DRU version 2.08B01 makes use of hardcoded credentials. It is possible to backup and restore device configurations via the management web interface. These devices are encrypted using a hardcoded password of "12345678"...

CVE-2024-57547

Insecure Permissions vulnerability in CMSimple v.5.16 allows a remote attacker to obtain sensitive information via a crafted script to the Functionality of downloading php backup files...

S.Siedle & Soehne SG 150-0 Smart Gateway Code Execution Vulnerability

S.Siedle & Soehne SG 150-0 Smart Gateway is a home smart gateway product from S.Siedle & Soehne, Germany. A security vulnerability exists in the S.Siedle & Soehne SG 150-0 Smart Gateway prior to version 1.2.4. The vulnerability can be exploited by an attacker to execute code via the backup functi...

[SA17513] IPCop Squid Vulnerability and Web Backup Security Issue

TITLE: IPCop Squid Vulnerability and Web Backup Security Issue SECUNIA ADVISORY ID: SA17513 VERIFY ADVISORY: http://secunia.com/advisories/17513/ CRITICAL: Less critical IMPACT: Exposure of sensitive information, DoS WHERE: From remote OPERATING SYSTEM: IPCop 1.4.x http://secunia.com/product/5028...