2 matches found
CVE-2022-4931
The BackupWordPress plugin for WordPress is vulnerable to information disclosure in versions up to, and including 3.12. This is due to missing authorization on the heartbeatreceived function that triggers on WordPress heartbeat. This makes it possible for authenticated attackers, with...
PT-2023-15918 · WordPress · Backupwordpress
Name of the Vulnerable Software and Affected Versions: BackupWordPress plugin for WordPress versions up to, and including 3.12 Description: The issue is related to information disclosure due to missing authorization on the heartbeat received function, which triggers on WordPress heartbeat. This...