2 matches found
CVE-2024-29828
creationtimestamp| type| source ---|---|--- 2024-05-24 23:27:46+00:00| seen| https://t.me/itsecnews/4463...
Migration Backup Restore < 3.5.0 - Admin+ SSRF
Description The plugin does not prevent users with the administrator role from pinging conducting SSRF attacks, which may be a problem in multisite configurations. 1. Click on "Upload Backup" and add http://127.0.0.1:XXX/123.wpstg - "Upload". If the port is open it will return an error "Not Found...