7.2.0

DATE	CVE	VULNERABILITY TITLE	RISK
2018-03-07	CVE-2017-15367	SQL Injection vulnerability in Bacula Bacula-Web Bacula-web before 8.0.0-rc2 is affected by multiple SQL Injection vulnerabilities that could allow an attacker to access the Bacula database and, depending on configuration, escalate privileges on the server. network low complexity bacula CWE-89 critical	9.8

CVE is a registered MITRE Corporation trademark and MITRE's CVE website is the authoritative source of CVE content. CWE is a registered MITRE Corporation trademark and MITRE's CWE website is the authoritative source of CWE content.