Lucene search
WPScanCVELIST:CVE-2023-6113HistoryJan 01, 2024 - 2:18 p.m.
CVE-2023-6113 WP Staging (Free < 3.1.3, Pro < 5.1.3) - Unauthenticated Backup Download
2024-01-0114:18:58
WPScan
www.cve.org
1
cve-2023-6113
wordpress
backup plugin
unauthenticated
download
EPSS
0.001
Percentile
42.6%
The WP STAGING WordPress Backup Plugin before 3.1.3 and WP STAGING Pro WordPress Backup Plugin before 5.1.3 do not prevent visitors from leaking key information about ongoing backups processes, allowing unauthenticated attackers to download said backups later.
CNA Affected
[
{
"vendor": "Unknown",
"product": "WP STAGING WordPress Backup Plugin",
"versions": [
{
"status": "affected",
"versionType": "semver",
"version": "0",
"lessThan": "3.1.3"
}
],
"defaultStatus": "unaffected",
"collectionURL": "https://wordpress.org/plugins"
},
{
"vendor": "Unknown",
"product": "WP STAGING Pro WordPress Backup Plugin",
"versions": [
{
"status": "affected",
"versionType": "semver",
"version": "0",
"lessThan": "5.1.3"
}
],
"defaultStatus": "unaffected"
}
]Related
cve
cve
CVE-2023-6113
2024-01-01 15:15:43
prion
prion
Information disclosure
2024-01-01 15:15:00
nvd
nvd
CVE-2023-6113
2024-01-01 15:15:43
wpvulndb
wpvulndb
WP Staging (Free < 3.1.3, Pro < 5.1.3) - Unauthenticated Backup Download
2023-12-07 00:00:00
wpexploit
wpexploit
WP Staging (Free < 3.1.3, Pro < 5.1.3) - Unauthenticated Backup Download
2023-12-07 00:00:00