Every CVE whose affected-product data names Elkarbackup, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (3)
CVE-2020-24925 — CVSS 7.5 (high): A Sensitive Source Code Path Disclosure vulnerability is found in ElkarBackup v1.3.3. An attacker is able to view the path of the source…
CVE-2020-35249 — CVSS 6.1 (medium): Cross Site Scripting (XSS) vulnerability in ElkarBackup 1.3.3, allows attackers to execute arbitrary code via the name parameter to the add…
CVE-2020-24924 — CVSS 5.4 (medium): A Persistent Cross-site Scripting vulnerability is found in ElkarBackup v1.3.3, where an attacker can steal the user session cookie using…