This page lists publicly disclosed CVE vulnerabilities affecting borg_project borg (linked via NVD CPE). Each row includes severity scores, summaries, and publication dates to help identify and analyze security issues.
| CVE | Summary | Source | Max CVSS | EPSS % | Published | Updated |
|---|---|---|---|---|---|---|
| CVE-2023-26265 | The Borg theme before 1.1.19 for Backdrop CMS does not sufficiently sanitize path arguments that are passed in via a URL. The function borg_preprocess_page in the file template.php does not properly sanitize incoming path arguments before using them. | [email protected] | 5.3 | 0.26% | 2023-02-21 | 2025-03-14 |
| CVE-2016-10099 | Borg (aka BorgBackup) before 1.0.9 has a flaw in the cryptographic protocol used to authenticate the manifest (list of archives), potentially allowing an attacker to spoof the list of archives. | [email protected] | 5.3 | 0.34% | 2017-01-02 | 2026-05-06 |