Lucene search
K

8 matches found

EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2020-23533

Malware in sbrugna...

9.8CVSS8.6AI score0.00932EPSS
Exploits1References3
RedhatCVE
RedhatCVE
added 2025/02/05 1:14 p.m.12 views

CVE-2020-35948

An issue was discovered in the XCloner Backup and Restore plugin before 4.2.13 for WordPress. It gave authenticated attackers the ability to modify arbitrary files, including PHP files. Doing so would allow an attacker to achieve remote code execution. The xclonerrestore.php writefileaction could...

9.9CVSS7.5AI score0.24937EPSS
Exploits5
RedhatCVE
RedhatCVE
added 2025/02/05 1:13 p.m.10 views

CVE-2020-35950

An issue was discovered in the XCloner Backup and Restore plugin before 4.2.153 for WordPress. It allows CSRF via almost any endpoint...

9.8CVSS6.9AI score0.00932EPSS
Exploits1
Patchstack
Patchstack
added 2024/07/16 12:0 a.m.14 views

WordPress XCloner Backup, Restore and Migrate Plugin <= 4.7.3 is vulnerable to Sensitive Data Exposure

Software XCloner Backup, Restore and Migrate Type Plugin Vulnerable versions = 4.7.3 Fixed in 4.7.4 OWASP Top 10 A3: Sensitive Data Exposure Classification Sensitive Data Exposure CVE CVE-2024-6559 Patch priority Low CVSS severity Low 5.3 Developer Claim ownership PSID 382b1355c9ee Credits...

5.3CVSS6.6AI score0.00373EPSS
Exploits0References3Affected Software1
Prion
Prion
added 2021/01/01 4:15 a.m.21 views

Remote code execution

An issue was discovered in the XCloner Backup and Restore plugin before 4.2.13 for WordPress. It gave authenticated attackers the ability to modify arbitrary files, including PHP files. Doing so would allow an attacker to achieve remote code execution. The xclonerrestore.php writefileaction could...

6.5CVSS8.8AI score0.24937EPSS
Exploits5References4Affected Software1
WPVulnDB
WPVulnDB
added 2020/09/22 12:0 a.m.16 views

XCloner Backup and Restore < 4.2.153 - Cross-Site Request Forgery

Almost all of the endpoints in the plugin were vulnerable to cross-site request forgery due to a failure to implement nonces and corresponding checks. An attacker could use a CSRF attack to trigger a backup or update plugin options, along with all of the malicious activity outlined in the referen...

6.8CVSS2.2AI score0.00932EPSS
Exploits1References1Affected Software1
0daydb
0daydb
added 2020/05/28 5:18 p.m.52 views

Joomla XCloner Backup 3.5.3 - Local File Disclosure

Joomla XCloner Backup version 3.5.3 suffers from a local file disclosure vulnerability. Exploit Title: Joomla XCloner Backup - Authenticated Local File Disclosure Date: 10.05.2020 Exploit Author: Mehmet Kelepçe / Gais Cyber Security Exploit-Db Author ID: 8763 Reference:...

7.1AI score
Exploits0
0day.today
0day.today
added 2020/05/26 12:0 a.m.56 views

Joomla XCloner Backup 3.5.3 Plugin - Local File Inclusion (Authenticated) Vulnerability

Exploit for php platform in category web applications Exploit Title: Joomla! Plugin XCloner Backup 3.5.3 - Local File Inclusion Authenticated Exploit Author: Mehmet Kelepçe / Gais Cyber Security Exploit-Db Author ID: 8763 Reference:...

7.4AI score
Exploits0
Rows per page
Query Builder