CVE-2026-29200 | WebPros Comet Backup up to 26.1.1/26.2.1 API Call authorization

Inserito da Angelo Barbosa | Mag 4, 2026 | CVE

A vulnerability was found in WebPros Comet Backup up to 26.1.1/26.2.1. It has been declared as problematic. This affects an unknown function of the component API Call Handler. Executing a manipulation can lead to authorization bypass.

This vulnerability is registered as CVE-2026-29200. It is possible to launch the attack remotely. No exploit is available.

It is recommended to upgrade the affected component.

CVE-2026-29200 | WebPros Comet Backup up to 26.1.1/26.2.1 API Call authorization

Post correlati

CVE-2024-31008 | wuzhicms 4.1.0 index.php information disclosure

CVE-2024-10945 | Rockwell Automation FactoryTalk Updater prior 4.20.00 unusual condition

CVE-2025-8014 | GitLab Community Edition/Enterprise Edition up to 18.2.6/18.3.2/18.4.0 GraphQL Endpoint allocation of resources (Issue 556838)

CVE-2023-32329 | IBM Security Access Manager Container up to 10.0.6.1 File data authenticity (XFDB-254972)