WordPress BackWPup Plugin <= 1.4.0 - Directory Traversal

2012-10-0800:00:00

N/A

patchstack.com

0.005 Low

EPSS

Percentile

75.9%

because of this vulnerability, the attackers can read arbitrary files in the “wpabs parameter”.

Solution

           Update the plugin.

CPENameOperatorVersion
backwpuple1.4.0

CPE	Name	Operator	Version
	backwpup	le	1.4.0

cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-5208

0.005 Low

EPSS

Percentile

75.9%

Related for PATCHSTACK:970EC7DE3C0C04AD5607D3EDF1248FF2