CVE Alert: CVE-2025-45346

Vulnerability Summary: CVE-2025-45346

SQL Injection vulnerability in Bacula-web before v.9.7.1 allows a remote attacker to execute arbitrary code via a crafted HTTP GET request.

Affected Endpoints:

GET request

Published Date:

7/29/2025, 8:15:26 PM

🔥 CVSS Score:

CVSS v3 Score: 8.1 (High)

Exploit Status:

Not Exploited

References:

https://github.com/bacula-web/bacula-web/commit/ad5d94809f17994a61496ecfec9cd3a16ac14a5f
https://github.com/bacula-web/bacula-web/releases/tag/v9.7.1

Recommended Action:

No proposed action available. Please refer to vendor documentation for updates.

A considerable amount of time and effort goes into maintaining this website, creating backend automation and creating new features and content for you to make actionable intelligence decisions. Everyone that supports the site helps enable new functionality.

If you like the site, please support us on “Patreon” or “Buy Me A Coffee” using the buttons below

Buy Me A Coffee

Patreon

To keep up to date follow us on the below channels.

Tags: CVE, OSINT, threatintel

Vulnerability Summary: CVE-2025-45346

Affected Endpoints:

Published Date:

🔥 CVSS Score:

Exploit Status:

References:

Recommended Action:

[INCRANSOM] – Ransomware Victim: Devon

Ubuntu Linux Kernel Multiple Vulnerabilities

Apple Products Multiple Vulnerabilities

CVE Alert: CVE-2025-54575

CVE Alert: CVE-2025-8331

Vulnerability Summary: CVE-2025-45346

Affected Endpoints:

Published Date:

🔥 CVSS Score:

Exploit Status:

References:

Recommended Action:

You may have missed

[INCRANSOM] – Ransomware Victim: Devon

Ubuntu Linux Kernel Multiple Vulnerabilities

Apple Products Multiple Vulnerabilities

CVE Alert: CVE-2025-54575

CVE Alert: CVE-2025-8331