Lucene search

CVE-2024-8852 All-in-One WP Migration and Backup <= 7.86 - Unauthenticated Information Disclosure via Error Logs

🗓️ 22 Oct 2024 05:48:33Reported by WordfenceType

All-in-One WP Migration and Backup plugin vulnerabilit

Reporter	Title	Published	Views	Family All 5
Vulnrichment	CVE-2024-8852 All-in-One WP Migration and Backup <= 7.86 - Unauthenticated Information Disclosure via Error Logs	22 Oct 202405:33	–	vulnrichment
Patchstack	WordPress All-in-One WP Migration Plugin <= 7.86 is vulnerable to Sensitive Data Exposure	21 Oct 202400:00	–	patchstack
NVD	CVE-2024-8852	22 Oct 202406:15	–	nvd
CVE	CVE-2024-8852	22 Oct 202406:15	–	cve
Wordfence Blog	Wordfence Intelligence Weekly WordPress Vulnerability Report (October 21, 2024 to October 27, 2024)	31 Oct 202415:37	–	wordfence

[
  {
    "vendor": "yaniiliev",
    "product": "All-in-One WP Migration and Backup",
    "versions": [
      {
        "version": "*",
        "status": "affected",
        "lessThanOrEqual": "7.86",
        "versionType": "semver"
      }
    ],
    "defaultStatus": "unaffected"
  }
]

Source	Link
wordfence	www.wordfence.com/threat-intel/vulnerabilities/id/c4901d9d-7b37-40d5-a42b-59c80bbbe8ff
plugins	www.plugins.trac.wordpress.org/browser/all-in-one-wp-migration/tags/7.86/functions.php
plugins	www.plugins.trac.wordpress.org/changeset

Transform Your Security Services

Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.

Book a live demo

22 Oct 2024 05:33Current

CVSS35.3

EPSS0.001

CWE-200