Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
cvelistMitreCVELIST:CVE-2013-2741
HistoryApr 02, 2013 - 10:00 a.m.

CVE-2013-2741

2013-04-0210:00:00
mitre
www.cve.org
6
cve-2013-2741
backupbuddy plugin
importbuddy.php
wordpress
authentication
remote attackers
sensitive information
overwrite files
delete files
direct request
step=1 request
step=2 request
step=3 request
step=7 request

AI Score

6.7

Confidence

Low

EPSS

0.006

Percentile

79.5%

JSON

importbuddy.php in the BackupBuddy plugin 1.3.4, 2.1.4, 2.2.25, 2.2.28, and 2.2.4 for WordPress does not require that authentication be enabled, which allows remote attackers to obtain sensitive information, or overwrite or delete files, via vectors involving a (1) direct request, (2) step=1 request, (3) step=2 or step=3 request, or (4) step=7 request.

Related

prion 1
nvd 1
cve 1
wpvulndb 1
patchstack 1
openvas 1
prion
prion
Design/Logic Flaw
2013-04-02 12:09:00
nvd
nvd
CVE-2013-2741
2013-04-02 12:09:11
cve
cve
CVE-2013-2741
2013-04-02 12:09:11
wpvulndb
wpvulndb
Backupbuddy - importbuddy.php Direct Request Remote Backup File Disclosure
2013-03-24 00:00:00
patchstack
patchstack
WordPress BackupBuddy Plugin <= 2.2.4 - Sensitive Data Exposure #3
2013-04-01 00:00:00
openvas
openvas
WordPress Backupbuddy Multiple Vulnerabilities
2013-08-29 00:00:00

AI Score

6.7

Confidence

Low

EPSS

0.006

Percentile

79.5%

JSON
Related for CVELIST:CVE-2013-2741
prion1nvd1cve1wpvulndb1patchstack1openvas1