Vulnerability Database

Published: Jul 29, 2025
Updated: Aug 15, 2025
CVE: <a href="https://nvd.nist.gov/vuln/detail/CVE-2025-45346" target="_blank" rel="noopener"> CVE-2025-45346
GHSA: <a href="https://github.com/advisories/GHSA-hq25-vp56-qr86" target="_blank" rel="noopener"> GHSA-hq25-vp56-qr86
Severity: High
Exploit:

300,830

Total vulnerabilities in the database

SQL Injection vulnerability in Bacula-web before v.9.7.1 allows a remote attacker to execute arbitrary code via a crafted HTTP GET request.

CVSS v3:

CWEs:

OWASP TOP 10:

Software	From	Fixed in
bacula-web / bacula-web	-	9.7.1
bacula / bacula-web	-	9.7.1

SynScan provides clear, real-time security insights so you can monitor your attack surface, spot risks early, and act fast—without extra complexity.