CVE-2026-32999 | WebPros Comet Backup up to 26.4.2/26.4.x Backup Agent Signing code injection

Inserito da Angelo Barbosa | Mag 28, 2026 | CVE

A vulnerability identified as critical has been detected in WebPros Comet Backup up to 26.4.2/26.4.x. The impacted element is an unknown function of the component Backup Agent Signing Module. This manipulation causes code injection.

This vulnerability is handled as CVE-2026-32999. The attack can be initiated remotely. There is not any exploit available.

You should upgrade the affected component.

CVE-2026-32999 | WebPros Comet Backup up to 26.4.2/26.4.x Backup Agent Signing code injection

Post correlati

CVE-2024-1862 | WooCommerce Add to Cart Custom Redirect Plugin up to 1.2.13 on WordPress Options Update authorization

CVE-2025-6003 | Single Sign-On SSO Plugin up to 5.3 on WordPress improper authorization

CVE-2024-27343 | Kofax Power PDF PDF File Parser out-of-bounds

CVE-2026-25054 | n8n-io n8n up to 1.123.8/2.2.0 cross site scripting (GHSA-qpq4-pw7f-pp8w)