3 matches found
CVE-2024-1982
The Migration, Backup, Staging – WPvivid plugin for WordPress is vulnerable to unauthorized access due to a missing capability check on the getrestoreprogress and restore functions in all versions up to, and including, 0.9.68. This makes it possible for unauthenticated attackers to exploit a SQL...
CVE-2024-1982
CVE-2024-1982 affects Migration, Backup, Staging – WPvivid (WordPress). Root cause: missing capability check in get_restore_progress() and restore() across all versions up to 0.9.68. Impact: unauthenticated attackers can trigger a SQL injection or DoS. Public references confirm the vulnerability ...
WordPress WPvivid Backup and Migration Plugin <= 0.9.68 is vulnerable to Broken Access Control
Software WPvivid Backup and Migration Type Plugin Vulnerable versions = 0.9.68 Fixed in 0.9.69 OWASP Top 10 A5: Broken Access Control Classification Broken Access Control CVE CVE-2024-1982 Patch priority Low CVSS severity Low 6.5 Developer Claim ownership PSID 79947c67cdef Credits Denis Werner...