3 matches found
WordPress BackWPup Plugin < 4.0.4 is vulnerable to Sensitive Data Exposure
Software BackWPup Type Plugin Vulnerable versions 4.0.4 Fixed in 4.0.4 OWASP Top 10 A3: Sensitive Data Exposure Classification Sensitive Data Exposure CVE CVE-2023-7164 Patch priority Low CVSS severity Low 6.8 Developer Claim ownership PSID 21f6bbb8269a Credits Dmitrii Ignatyev Required privilege...
CVE-2023-7164
The BackWPup WordPress plugin before 4.0.4 does not prevent Directory Listing in its temporary backup folder, allowing unauthenticated attackers to download backups of a site's database...
CVE-2023-7164 BackWPup < 4.0.4 - Unauthenticated Backup Download
The BackWPup WordPress plugin before 4.0.4 does not prevent Directory Listing in its temporary backup folder, allowing unauthenticated attackers to download backups of a site's database...