4 matches found
Exploit for Path Traversal in Backupbliss Backup_Migration
CVE-2023-6972 Proof of Concept PoC Description This rep...
WordPress Backup Migration Plugin <= 1.3.9 is vulnerable to Path Traversal
Software Backup Migration Type Plugin Vulnerable versions = 1.3.9 Fixed in 1.4.0 OWASP Top 10 A5: Security Misconfiguration Classification Path Traversal CVE CVE-2023-6972 Patch priority High CVSS severity High 7.5 Developer Claim ownership PSID 63ca4651f92b Credits NP3228 Required privilege...
CVE-2023-6972
The Backup Migration plugin for WordPress is vulnerable to Path Traversal in all versions up to, and including, 1.3.9 via the 'content-backups' and 'content-name', 'content-manifest', or 'content-bmitmp' and 'content-identy' HTTP headers. This makes it possible for unauthenticated attackers to...
CVE-2023-6972
CVE-2023-6972 applies to the Backup Migration plugin for WordPress, vulnerable in all versions up to 1.3.9. The root cause is a path traversal vulnerability exploitable via the content-backups, content-name, content-manifest, content-bmitmp, and content-identy HTTP headers, enabling an unauthenti...