Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
UrbackupUrbackup Server

2 matches found

CVE
CVEadded 2023/11/07 12:0 a.m.47 views

CVE-2023-47102

CVE-2023-47102 affects UrBackup Server 2.5.31. The issue stems from verbose authentication error messages that reveal whether a username exists, enabling brute-force enumeration of user accounts. Documented impact is limited to information disclosure that facilitates username guessing; no exploit...

5.3CVSS5.3AI score0.00626EPSS
CVE
CVEadded 2017/12/17 5:0 a.m.45 views

CVE-2017-16950

CVE-2017-16950 is an XSS in UrBackup Server prior to 2.1.20. The web UI fails to properly sanitize the action parameter, allowing a remote attacker to inject arbitrary web script or HTML via that parameter. Affected product: UrBackup Server (before 2.1.20); root cause: insufficient input sanitiza...

6.1CVSS6AI score0.00765EPSS