4 matches found
CVE-2024-3412
The WP STAGING WordPress Backup Plugin – Migration Backup Restore plugin for WordPress is vulnerable to arbitrary file uploads due to missing file type validation in the wpstgprocessing AJAX action in all versions up to, and including, 3.4.3. This makes it possible for authenticated attackers, wi...
CVE-2024-3412 WP STAGING WordPress Backup Plugin – Migration Backup Restore <= 3.4.3 - Authenticated (Admin+) Arbitrary File Upload
The WP STAGING WordPress Backup Plugin – Migration Backup Restore plugin for WordPress is vulnerable to arbitrary file uploads due to missing file type validation in the wpstgprocessing AJAX action in all versions up to, and including, 3.4.3. This makes it possible for authenticated attackers, wi...
CVE-2024-3412 WP STAGING WordPress Backup Plugin – Migration Backup Restore <= 3.4.3 - Authenticated (Admin+) Arbitrary File Upload
The WP STAGING WordPress Backup Plugin – Migration Backup Restore plugin for WordPress is vulnerable to arbitrary file uploads due to missing file type validation in the wpstgprocessing AJAX action in all versions up to, and including, 3.4.3. This makes it possible for authenticated attackers, wi...
WordPress WP STAGING – Backup Duplicator & Migration Plugin <= 3.4.3 is vulnerable to Arbitrary File Upload
Software WP STAGING – Backup Duplicator & Migration Type Plugin Vulnerable versions = 3.4.3 Fixed in 3.5.0 OWASP Top 10 A1: Injection Classification Arbitrary File Upload CVE CVE-2024-3412 Patch priority Low CVSS severity Low 7.2 Developer Claim ownership PSID af3b452b0d24 Credits haidv35 Require...