RSS   Vulnerabilities for 'Super backup'   RSS

2021-10-22
 
CVE-2020-23042

CWE-79
 

 
Dropouts Technologies LLP Super Backup v2.0.5 was discovered to contain a cross-site scripting (XSS) vulnerability in the path parameter of the `list` and `download` module. This vulnerability allows attackers to execute arbitrary web scripts or HTML via a crafted GET request.

 
 
CVE-2020-23061

CWE-22
 

 
Dropouts Technologies LLP Super Backup v2.0.5 was discovered to contain an issue in the path parameter of the `list` and `download` module which allows attackers to perform a directory traversal via a change to the path variable to request the local list command.

 

 >>> Vendor: Dropouts 2 Products
Air share
Super backup


Copyright 2022, cxsecurity.com

 

Back to Top