Lucene search
K

4 matches found

RedhatCVE
RedhatCVE
added 2025/05/23 2:30 a.m.6 views

CVE-2023-7201

The Everest Backup WordPress plugin before 2.2.5 does not properly validate backup files to be uploaded, allowing high privilege users such as admin to upload arbitrary files on the server even when they should not be allowed to for example in multisite setup...

6.5CVSS6.7AI score0.00649EPSS
Exploits2References1
Cvelist
Cvelist
added 2024/04/15 5:0 a.m.22 views

CVE-2023-7201 Everest Backup < 2.2.5 - Admin+ Arbitrary File Upload

The Everest Backup WordPress plugin before 2.2.5 does not properly validate backup files to be uploaded, allowing high privilege users such as admin to upload arbitrary files on the server even when they should not be allowed to for example in multisite setup...

6.7AI score0.00649EPSS
Exploits2References1
CVE
CVE
added 2024/04/15 5:0 a.m.55 views

CVE-2023-7201

CVE-2023-7201 affects the Everest Backup WordPress plugin (versions prior to 2.2.5). The flaw allows high-privilege users (e.g., admin) to upload arbitrary files due to improper validation, including in multisite setups. Red Hat and CVE sources corroborate the same description. Remediation: upgra...

6.5CVSS9.2AI score0.00649EPSS
Exploits2References1Affected Software1
Patchstack
Patchstack
added 2024/04/15 12:0 a.m.7 views

WordPress Everest Backup Plugin < 2.2.5 is vulnerable to Arbitrary File Upload

Software Everest Backup Type Plugin Vulnerable versions 2.2.5 Fixed in 2.2.5 OWASP Top 10 A1: Injection Classification Arbitrary File Upload CVE CVE-2023-7201 Patch priority Low CVSS severity Low 9.1 Developer Claim ownership PSID e4434e41add7 Credits Emad Required privilege Administrator Publish...

6.5CVSS6.8AI score0.00649EPSS
Exploits2References4Affected Software1
Rows per page
Query Builder