2 matches found
CVE-2020-36668
The JetBackup – WP Backup, Migrate & Restore plugin for WordPress is vulnerable to sensitive information disclosure in versions up to, and including, 1.4.0 due to a lack of proper capability checking on the backupguardgetmanualmodal function called via an AJAX action. This makes it possible for...
CVE-2020-36668
The CVE concerns the JetBackup – WP Backup, Migrate & Restore plugin for WordPress (versions ≤ 1.4.0). Root cause: lack of proper capability checks on the backup_guard_get_manual_modal function invoked via an AJAX action. Impact: allows subscriber-level attackers and above to disclose database ta...