2 matches found
CVE-2023-7002
The Backup Migration plugin for WordPress is vulnerable to OS Command Injection in all versions up to, and including, 1.3.9 via the 'url' parameter. This vulnerability allows authenticated attackers, with administrator-level permissions and above, to execute arbitrary commands on the host operati...
CVE-2023-7002
CVE-2023-7002 affects the WordPress plugin Backup Migration (backup-backup). It enables OS Command Injection via the url parameter in versions up to 1.3.9. Exploitation requires administrator-level privileges or higher, allowing arbitrary commands to run on the host. Current connected data indica...