Lucene search
S.W.A.T.PATCHSTACK:F5CAD322B767F8418AA05C5B3424F1D9HistoryNov 02, 2007 - 12:00 a.m.
WordPress BackUpWordPress Plugin <= 0.4.2 - Remote File Inclusion
2007-11-0200:00:00
S.W.A.T.
patchstack.com
3
6.8 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:M/Au:N/C:P/I:P/A:P
Because og this vulnerability, the attackers can execute arbitrary PHP code via a URL in the βbkpwp_plugin_pathβ parameter.
Solution
Update the plugin.
| CPE | Name | Operator | Version |
|---|---|---|---|
| backupwordpress | le | 0.4.2 |
Related
cve
cve
CVE-2007-5800
2007-11-03 00:46:00
canvas
canvas
Immunity Canvas: WPBACKUP_INCLUDE
2007-11-03 00:46:00
prion
prion
Remote file inclusion
2007-11-03 00:46:00
6.8 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:M/Au:N/C:P/I:P/A:P
Related for PATCHSTACK:F5CAD322B767F8418AA05C5B3424F1D9