Lucene search
K

9 matches found

ATTACKERKB
ATTACKERKB
added 2023/03/13 2:15 p.m.260 views

CVE-2022-31474

Improper Limitation of a Pathname to a Restricted Directory 'Path Traversal' vulnerability in iThemes BackupBuddy allows Path Traversal.This issue affects BackupBuddy: from 8.5.8.0 through 8.7.4.1...

7.5CVSS7.5AI score0.63761EPSS
In wildExploits2References3Affected Software1
Vulnrichment
Vulnrichment
added 2023/03/13 1:21 p.m.15 views

CVE-2022-31474 WordPress BackupBuddy Plugin 8.5.8.0-8.7.4.1 is vulnerable to Directory Traversal

Improper Limitation of a Pathname to a Restricted Directory 'Path Traversal' vulnerability in iThemes BackupBuddy allows Path Traversal.This issue affects BackupBuddy: from 8.5.8.0 through 8.7.4.1...

7.5CVSS7.5AI score0.63761EPSS
Exploits2References2
Cvelist
Cvelist
added 2023/03/13 1:21 p.m.44 views

CVE-2022-31474 WordPress BackupBuddy Plugin 8.5.8.0-8.7.4.1 is vulnerable to Directory Traversal

Improper Limitation of a Pathname to a Restricted Directory 'Path Traversal' vulnerability in iThemes BackupBuddy allows Path Traversal.This issue affects BackupBuddy: from 8.5.8.0 through 8.7.4.1...

7.5CVSS7.7AI score0.63761EPSS
Exploits2References2
hivepro
hivepro
added 2022/09/14 2:32 p.m.43 views

Zero-day Vulnerability in the WordPress BackupBuddy Plugin

Threat Level Vulnerability Report For a detailed threat advisory, download the pdf file here Summary A zero-day vulnerability in the BackupBuddy WordPress plugin is being actively exploited. There are an estimated 140,000 active installations of the plugin, and the arbitrary file download/read...

3.4AI score0.63761EPSS
Exploits2
Malwarebytes
Malwarebytes
added 2022/09/13 12:0 p.m.72 views

BackupBuddy WordPress plugin vulnerable to exploitation, update now!

Users of WordPress may need to perform an urgent update related to the popular BackupBuddy plugin. BackupBuddy is a plugin which offers backup solutions designed to combat "hacks, malware, user error, deleted files, and running bad commands". Unfortunately, running an older version of BackupBuddy...

7.5AI score0.63761EPSS
Exploits2
Circl
Circl
added 2022/09/09 11:10 a.m.23 views

CVE-2022-31474

creationtimestamp| type| source ---|---|--- 2022-09-09 11:10:06+00:00| exploited| https://t.me/truesecator/3395 2022-09-12 08:45:23+00:00| exploited| https://t.me/itsecnews/1404 2022-09-30 11:13:08+00:00| seen| MISP/305612d3-f4b3-4091-821e-154c12380646 2022-10-01 06:30:54+00:00| exploited|...

7.5CVSS7.3AI score0.63761EPSS
Exploits2References8
The Hacker News
The Hacker News
added 2022/09/09 8:19 a.m.129 views

Hackers Exploit Zero-Day in WordPress BackupBuddy Plugin in ~5 Million Attempts

A zero-day flaw in a WordPress plugin called BackupBuddy is being actively exploited, WordPress security company Wordfence has disclosed. "This vulnerability makes it possible for unauthenticated users to download arbitrary files from the affected site which can include sensitive information," it...

0.5AI score0.63761EPSS
Exploits2
0day.today
0day.today
added 2022/09/08 12:0 a.m.426 views

WordPress BackupBuddy 8.7.4.1 Arbitrary File Read Vulnerability

WordPress BackupBuddy plugin versions 8.5.8.0 through 8.7.4.1 suffer from an arbitrary file read and download vulnerability. Description: Arbitrary File Download/Read Affected Plugin: BackupBuddy Plugin Slug: backupbuddy Plugin Developer: iThemes Affected Versions: 8.5.8.0 – 8.7.4.1 CVE ID:...

7.5CVSS0.63761EPSS
Exploits2
Wordfence Blog
Wordfence Blog
added 2022/09/07 2:56 p.m.21 views

PSA: Nearly 5 Million Attacks Blocked Targeting 0-Day in BackupBuddy Plugin

Late evening, on September 6, 2022, the Wordfence Threat Intelligence team was alerted to the presence of a vulnerability being actively exploited in BackupBuddy, a WordPress plugin we estimate has around 140,000 active installations. This vulnerability makes it possible for unauthenticated users...

7.6AI score0.63761EPSS
Exploits2
Rows per page
Query Builder