Lucene search
K

265 matches found

OSV
OSV
added 2024/01/29 3:15 p.m.2 views

CVE-2023-7204

The WP STAGING WordPress Backup plugin before 3.2.0 allows access to cache files during the cloning process which provides...

7.5CVSS7.3AI score0.00644EPSS
Exploits2References1
Prion
Prion
added 2024/01/29 3:15 p.m.25 views

Design/Logic Flaw

The WP STAGING WordPress Backup plugin before 3.2.0 allows access to cache files during the cloning process which provides...

5CVSS7.1AI score0.00644EPSS
Exploits2References1Affected Software1
Cvelist
Cvelist
added 2024/01/29 2:44 p.m.29 views

CVE-2023-7204 WP STAGING WordPress Backup Plugin < 3.2.0 - Unauthorized Sensitive Data Exposure

The WP STAGING WordPress Backup plugin before 3.2.0 allows access to cache files during the cloning process which provides...

7.7AI score0.00644EPSS
Exploits2References1
Positive Technologies
Positive Technologies
added 2024/01/29 12:0 a.m.8 views

PT-2024-15229 · WordPress · Wp Staging

Name of the Vulnerable Software and Affected Versions: WP STAGING WordPress Backup plugin versions prior to 3.2.0 Description: The issue allows access to cache files during the cloning process. This provides unauthorized access to sensitive information. Recommendations: For versions prior to 3.2....

7.5CVSS7.8AI score0.00644EPSS
Exploits2References4
OSV
OSV
added 2024/01/01 3:15 p.m.4 views

CVE-2023-6113

The WP STAGING WordPress Backup Plugin before 3.1.3 and WP STAGING Pro WordPress Backup Plugin before 5.1.3 do not prevent visitors from leaking key information about ongoing backups processes, allowing unauthenticated attackers to download said backups later...

7.5CVSS5.8AI score0.00782EPSS
Exploits2References2
Cvelist
Cvelist
added 2024/01/01 2:18 p.m.23 views

CVE-2023-6113 WP Staging (Free < 3.1.3, Pro < 5.1.3) - Unauthenticated Backup Download

The WP STAGING WordPress Backup Plugin before 3.1.3 and WP STAGING Pro WordPress Backup Plugin before 5.1.3 do not prevent visitors from leaking key information about ongoing backups processes, allowing unauthenticated attackers to download said backups later...

7.7AI score0.00782EPSS
Exploits2References2
CVE
CVE
added 2024/01/01 2:18 p.m.89 views

CVE-2023-6113

CVE-2023-6113 affects WP STAGING WordPress Backup Plugin &lt;3.1.3 and WP STAGING Pro

7.5CVSS7.4AI score0.00782EPSS
Exploits2References2Affected Software1
Positive Technologies
Positive Technologies
added 2024/01/01 12:0 a.m.6 views

PT-2024-14883 · WordPress · Wp Staging Pro Wordpress Backup Plugin

Name of the Vulnerable Software and Affected Versions: WP STAGING WordPress Backup Plugin versions prior to 3.1.3 WP STAGING Pro WordPress Backup Plugin versions prior to 5.1.3 Description: The issue allows unauthenticated attackers to obtain key information about ongoing backup processes, which...

7.5CVSS7.4AI score0.00782EPSS
Exploits2References10
OSV
OSV
added 2023/12/31 5:15 p.m.4 views

CVE-2023-52185

Exposure of Sensitive Information to an Unauthorized Actor vulnerability in Everestthemes Everest Backup – WordPress Cloud Backup, Migration, Restore & Cloning Plugin.This issue affects Everest Backup – WordPress Cloud Backup, Migration, Restore & Cloning Plugin: from n/a through 2.1.9...

7.5CVSS7.3AI score0.00453EPSS
Exploits0References1
NVD
NVD
added 2023/12/31 5:15 p.m.12 views

CVE-2023-52185

Exposure of Sensitive Information to an Unauthorized Actor vulnerability in Everestthemes Everest Backup – WordPress Cloud Backup, Migration, Restore & Cloning Plugin.This issue affects Everest Backup – WordPress Cloud Backup, Migration, Restore & Cloning Plugin: from n/a through 2.1.9...

7.5CVSS0.00453EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2023/12/31 4:50 p.m.12 views

CVE-2023-52185 WordPress Everest Backup Plugin <= 2.1.9 is vulnerable to Sensitive Data Exposure

Exposure of Sensitive Information to an Unauthorized Actor vulnerability in Everestthemes Everest Backup – WordPress Cloud Backup, Migration, Restore & Cloning Plugin.This issue affects Everest Backup – WordPress Cloud Backup, Migration, Restore & Cloning Plugin: from n/a through 2.1.9...

5.3CVSS6.8AI score0.00453EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2023/11/13 12:0 a.m.6 views

PT-2023-23889 · Prashant Walke · Wp All Backup

Name of the Vulnerable Software and Affected Versions: Prashant Walke WP All Backup plugin versions = 2.4.3 Description: The issue is related to a Cross-Site Request Forgery CSRF vulnerability. This means an attacker could potentially trick a user into performing unintended actions on a web...

8.8CVSS8.8AI score0.00281EPSS
Exploits0References2
Packet Storm
Packet Storm
added 2023/06/26 12:0 a.m.218 views

Bludit Arbitrary File Download

-- coding: utf-8 -- /usr/bin/env python Exploit Title: Bludit 3.13.1 Backup Plugin - Arbitrary File Download Authenticated Date: 2022-07-21 Exploit Author: Antonio Cuomo arkantolo Vendor Homepage: https://www.bludit.com Software Link: https://github.com/bludit/bludit Version: 3.13.1 Tested on:...

7.1AI score
Exploits0
0day.today
0day.today
added 2023/06/26 12:0 a.m.249 views

Bludit < 3.13.1 Backup Plugin - Arbitrary File Download (Authenticated) Exploit

-- coding: utf-8 -- /usr/bin/env python Exploit Title: Bludit 3.13.1 Backup Plugin - Arbitrary File Download Authenticated Date: 2022-07-21 Exploit Author: Antonio Cuomo arkantolo Vendor Homepage: https://www.bludit.com Software Link: https://github.com/bludit/bludit Version: 3.13.1 Tested on:...

7.1AI score
Exploits0
Exploit DB
Exploit DB
added 2023/06/23 12:0 a.m.291 views

Bludit &lt; 3.13.1 Backup Plugin - Arbitrary File Download (Authenticated)

-- coding: utf-8 -- /usr/bin/env python Exploit Title: Bludit 3.13.1 Backup Plugin - Arbitrary File Download Authenticated Date: 2022-07-21 Exploit Author: Antonio Cuomo arkantolo Vendor Homepage: https://www.bludit.com Software Link: https://github.com/bludit/bludit Version: 3.13.1 Tested on:...

7.4AI score
Exploits0
NVD
NVD
added 2023/06/22 1:15 p.m.46 views

CVE-2023-32960

Cross-Site Request Forgery CSRF vulnerability in UpdraftPlus.Com, DavidAnderson UpdraftPlus WordPress Backup Plugin = 1.23.3 versions leads to sitewide Cross-Site Scripting XSS...

7.1CVSS6.7AI score0.00208EPSS
Exploits0References1
OSV
OSV
added 2023/06/22 1:15 p.m.4 views

CVE-2023-32960

Cross-Site Request Forgery CSRF vulnerability in UpdraftPlus.Com, DavidAnderson UpdraftPlus WordPress Backup Plugin = 1.23.3 versions leads to sitewide Cross-Site Scripting XSS...

6.1CVSS7.2AI score0.00208EPSS
Exploits0References1
CVE
CVE
added 2023/06/22 12:51 p.m.68 views

CVE-2023-32960

CVE-2023-32960 affects the WordPress UpdraftPlus Backup Plugin prior to or up to version 1.23.3. The vulnerability is a CSRF that enables sitewide XSS when exploited by a logged-in user or via crafted requests, as described in multiple sources. The OpenVAS advisory notes a fix path at 1.23.4, whi...

7.1CVSS6.3AI score0.00208EPSS
Exploits0References1Affected Software1
Patchstack
Patchstack
added 2023/05/12 12:0 a.m.21 views

WordPress WP All Backup Plugin <= 2.4.3 is vulnerable to Cross Site Request Forgery (CSRF)

Software WP All Backup Type Plugin Vulnerable versions = 2.4.3 Fixed in N/A OWASP Top 10 A5: Broken Access Control Classification Cross Site Request Forgery CSRF CVE CVE-2023-32583 Patch priority Low CVSS severity Low 6.3 Developer Claim ownership PSID 2d09c30b2474 Credits Mika Required privilege...

8.8CVSS6.6AI score0.00281EPSS
Exploits0References1Affected Software1
Tenable Nessus
Tenable Nessus
added 2023/04/05 12:0 a.m.10 views

Jenkins Enterprise and Operations Center 2.346.x < 2.346.40.0.14 Multiple Vulnerabilities (CloudBees Security Advisory 2023-04-05)

The version of Jenkins Enterprise or Jenkins Operations Center running on the remote web server is 2.346.x prior to 2.346.40.0.14. It is, therefore, affected by multiple vulnerabilities including the following: - CloudBees Backup plugin uses SHA-1 hashes for the approvers map BEE-29578 - CloudBee...

5.6AI score
Exploits0References1
Rows per page
Query Builder