Vulnerabilities (CVE)

Filtered by vendor Bacula Subscribe
Filtered by product Bacula-web
Total 2 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2017-15367 1 Bacula 1 Bacula-web 2024-11-21 7.5 HIGH 9.8 CRITICAL
Bacula-web before 8.0.0-rc2 is affected by multiple SQL Injection vulnerabilities that could allow an attacker to access the Bacula database and, depending on configuration, escalate privileges on the server.
CVE-2014-8295 1 Bacula 1 Bacula-web 2024-11-21 7.5 HIGH N/A
SQL injection vulnerability in joblogs.php in Bacula-Web 5.2.10 allows remote attackers to execute arbitrary SQL commands via the jobid parameter.