2 matches found
CVE-2026-3143
The CVE concerns the BoldGrid WordPress plugin component of Total Upkeep – WordPress Backup Plugin plus Restore & Migrate. A missing capability check in wp_ajax_cli_cancel allows unauthenticated users to cancel a pending rollback, enabling unauthorized data modification in all versions up to 1.17...
WordPress Total Upkeep – WordPress Backup Plugin plus Restore & Migrate by BoldGrid plugin <= 1.17.1 - Missing Authorization to Unauthenticated Rollback Cancellation vulnerability
Missing Authorization to Unauthenticated Rollback Cancellation vulnerability discovered by Nabil Irawan - Heroes Cyber Security in WordPress Plugin Total Upkeep versions = 1.17.1...