Vulnerabilities > Softaculous > High
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2024-09-14 | CVE-2024-8669 | SQL Injection vulnerability in Softaculous Backuply The Backuply – Backup, Restore, Migrate and Clone plugin for WordPress is vulnerable to SQL Injection via the 'options' parameter passed to the backuply_wp_clone_sql() function in all versions up to, and including, 1.3.4 due to insufficient escaping on the user supplied parameter and lack of sufficient preparation on the existing SQL query. | 7.2 |
| 2024-07-25 | CVE-2024-24622 | OS Command Injection vulnerability in Softaculous Webuzo Softaculous Webuzo contains a command injection in the password reset functionality. | 8.8 |
| 2024-07-25 | CVE-2024-24623 | OS Command Injection vulnerability in Softaculous Webuzo Softaculous Webuzo contains a command injection vulnerability in the FTP management functionality. | 8.8 |
| 2024-02-09 | CVE-2024-0842 | Excessive Iteration vulnerability in Softaculous Backuply The Backuply – Backup, Restore, Migrate and Clone plugin for WordPress is vulnerable to Denial of Service in all versions up to, and including, 1.2.5. | 7.5 |
| 2024-02-02 | CVE-2024-1189 | Improper Resource Shutdown or Release vulnerability in Softaculous Ampps A vulnerability has been found in AMPPS 2.7 and classified as problematic. | 7.5 |
| 2021-03-18 | CVE-2020-26886 | Improper Initialization vulnerability in Softaculous Softaculous before 5.5.7 is affected by a code execution vulnerability because of External Initialization of Trusted Variables or Data Stores. | 7.8 |