Vulnerabilities > Dropouts > Super Backup

DATE CVE VULNERABILITY TITLE RISK
2021-10-22 CVE-2020-23042 Cross-site Scripting vulnerability in Dropouts Super Backup 2.0.5
Dropouts Technologies LLP Super Backup v2.0.5 was discovered to contain a cross-site scripting (XSS) vulnerability in the path parameter of the `list` and `download` module.
network
dropouts CWE-79
4.3
4.3
2021-10-22 CVE-2020-23061 Path Traversal vulnerability in Dropouts Super Backup 2.0.5
Dropouts Technologies LLP Super Backup v2.0.5 was discovered to contain an issue in the path parameter of the `list` and `download` module which allows attackers to perform a directory traversal via a change to the path variable to request the local list command.
network
low complexity
dropouts CWE-22
5.0
5.0