Dropouts: >> Super Backup >> 2.0.5 Security Vulnerabilities
Dropouts Technologies LLP Super Backup v2.0.5 was discovered to contain a cross-site scripting (XSS) vulnerability in the path parameter of the `list` and `download` module. This vulnerability allows attackers to execute arbitrary web scripts or HTML via a crafted GET request.
CVSS Score
6.1
EPSS Score
0.003
Published
2021-10-22
Dropouts Technologies LLP Super Backup v2.0.5 was discovered to contain an issue in the path parameter of the `list` and `download` module which allows attackers to perform a directory traversal via a change to the path variable to request the local list command.
CVSS Score
7.5
EPSS Score
0.004
Published
2021-10-22