All-in-one Wp Migration Security Vulnerabilities and Issues — All-in-one Wp Migration CVE List

Lucene search

ServmaskAll-in-one Wp Migration

1 matches found

CVE•added 2022/05/10 8:15 p.m.•75 views

CVE-2022-1476

The All-in-One WP Migration plugin for WordPress is vulnerable to arbitrary file deletion via directory traversal due to insufficient file validation via the ~/lib/model/class-ai1wm-backups.php file, in versions up to, and including, 7.58. This can be exploited by administrative users, and users wh...

6.6CVSS6.7AI score0.23164EPSS