Lucene search
PRIOn knowledge basePRION:CVE-2014-8605HistoryJun 10, 2015 - 6:59 p.m.
Improper access control
2015-06-1018:59:00
PRIOn knowledge base
www.prio-n.com
5
The XCloner plugin 3.1.1 for WordPress and 3.5.1 for Joomla! stores database backup files with predictable names under the web root with insufficient access control, which allows remote attackers to obtain sensitive information via a direct request to a backup file in administrators/backups/.
Related
patchstack
patchstack
cvelist
cvelist
CVE-2014-8605
2015-06-10 18:00:00
nvd
nvd
CVE-2014-8605
2015-06-10 18:59:02
cve
cve
CVE-2014-8605
2015-06-10 18:59:02
wpvulndb
wpvulndb
XCloner - Backup and Restore < 3.1.2 - Multiple Vulnerabilities (RCE & LFI)
2014-10-17 00:00:00
securityvulns
securityvulns
Xloner v3.1.2 wordpress plugin authenticated command execution and XSS
2015-06-08 00:00:00
packetstorm
packetstorm
Joomla/WordPress XCloner Command Execution / Password Disclosure
2014-11-07 00:00:00