📦 Vinchin Backup And Recovery

Vinchin Backup & Recovery v7.2 uses default MySQL credentials (root/vinchin) that allow attackers to gain database access. This can lead to full system compromise through privilege escalation and remo...

CVE-2023-45498 is a command injection vulnerability in VinChin Backup & Recovery software that allows attackers to execute arbitrary commands on affected systems. This affects versions 5.0.*, 6.0.*, 6...

This vulnerability allows authenticated attackers to execute arbitrary code on Vinchin Backup and Recovery systems via improper input validation in the getVerifydiyResult function. Attackers with vali...

Vinchin Backup & Recovery v7.2 contains an authenticated remote code execution vulnerability in the setNetworkCardInfo function. This allows authenticated attackers to execute arbitrary commands on th...

Vinchin Backup & Recovery v7.2 contains an authenticated remote code execution vulnerability in the deleteUpdateAPK function. This allows authenticated attackers to execute arbitrary commands on the s...