Read Time:21 Second

Posted by Valentin Lobstein via Fulldisclosure on Mar 13

CVE ID: CVE-2024-25228

Title: Authenticated Command Injection Vulnerability in ManoeuvreHandler.class.php of Vinchin Backup & Recovery
Versions 7.2 and Earlier

Description:
A critical security vulnerability has been discovered in the `getVerifydiyResult` function within the
`ManoeuvreHandler.class.php` file of Vinchin Backup & Recovery software, affecting versions 7.2 and earlier. This
function, intended for validating IP addresses…

Read More

More Stories

glibc-2.39-37.fc40

FEDORA-2025-69207650a4 Packages in this update: glibc-2.39-37.fc40 Update description: This update addresses two security vulnerabilities: * CVE-2025-0395: A buffer overflow may...

glibc-2.40-21.fc41

FEDORA-2025-497995b101 Packages in this update: glibc-2.40-21.fc41 Update description: This update addresses two security vulnerabilities: * CVE-2025-0395: A buffer overflow may...

abseil-cpp-20240722.1-1.el10_0

FEDORA-EPEL-2025-5801c774a5 Packages in this update: abseil-cpp-20240722.1-1.el10_0 Update description: Update to 20240722.1 Fix potential integer overflow in hash container create/resize Read...

abseil-cpp-20240116.3-1.fc40

FEDORA-2025-f1288edd80 Packages in this update: abseil-cpp-20240116.3-1.fc40 Update description: Update to 20240116.3 Fix potential integer overflow in hash container create/resize Read...