Lucene search
WPScanCVELIST:CVE-2023-7165HistoryFeb 27, 2024 - 8:30 a.m.
CVE-2023-7165 JetBackup < 2.0.9.9 - Directory Listing Exposing Backups
2024-02-2708:30:30
WPScan
www.cve.org
3
cve
jetbackup
wordpress
directory listing
exposing backups
sensitive directories
malicious actors
backup files
The JetBackup WordPress plugin before 2.0.9.9 doesn’t use index files to prevent public directory listing of sensitive directories in certain configurations, which allows malicious actors to leak backup files.
CNA Affected
[
{
"vendor": "Unknown",
"product": "JetBackup",
"versions": [
{
"status": "affected",
"versionType": "semver",
"version": "0",
"lessThan": "2.0.9.9"
}
],
"defaultStatus": "unaffected",
"collectionURL": "https://wordpress.org/plugins"
}
]Related
nvd
nvd
CVE-2023-7165
2024-02-27 09:15:37
wpvulndb
wpvulndb
JetBackup < 2.0.9.9 - Directory Listing Exposing Backups
2024-02-02 00:00:00
prion
prion
Information disclosure
2024-02-27 09:15:00
vulnrichment
vulnrichment
CVE-2023-7165 JetBackup < 2.0.9.9 - Directory Listing Exposing Backups
2024-02-27 08:30:30
cve
cve
CVE-2023-7165
2024-02-27 09:15:37
wpexploit
wpexploit
JetBackup < 2.0.9.9 - Directory Listing Exposing Backups
2024-02-02 00:00:00
wordfence
wordfence