Lucene search
WPScanVULNRICHMENT:CVE-2023-7165HistoryFeb 27, 2024 - 8:30 a.m.
CVE-2023-7165 JetBackup < 2.0.9.9 - Directory Listing Exposing Backups
2024-02-2708:30:30
WPScan
github.com
4
cve-2023-7165; jetbackup; directory listing; exposing backups; wordpress plugin; index files; sensitive directories; malicious actors; backup files
The JetBackup WordPress plugin before 2.0.9.9 doesn’t use index files to prevent public directory listing of sensitive directories in certain configurations, which allows malicious actors to leak backup files.
ADP Affected
[
{
"cpes": [
"cpe:2.3:a:jetbackup:jetbackup:*:*:*:*:*:wordpress:*:*"
],
"vendor": "jetbackup",
"product": "jetbackup",
"versions": [
{
"status": "affected",
"version": "0",
"lessThan": "2.0.9.9",
"versionType": "semver"
}
],
"defaultStatus": "unknown"
}
]Related
nvd
nvd
CVE-2023-7165
2024-02-27 09:15:37
wpvulndb
wpvulndb
JetBackup < 2.0.9.9 - Directory Listing Exposing Backups
2024-02-02 00:00:00
prion
prion
Information disclosure
2024-02-27 09:15:00
cvelist
cvelist
CVE-2023-7165 JetBackup < 2.0.9.9 - Directory Listing Exposing Backups
2024-02-27 08:30:30
cve
cve
CVE-2023-7165
2024-02-27 09:15:37
wpexploit
wpexploit
JetBackup < 2.0.9.9 - Directory Listing Exposing Backups
2024-02-02 00:00:00
wordfence
wordfence
AI Score
6.5
Confidence
High
SSVC
Exploitation
poc
Automatable
yes
Technical Impact
partial
Related for VULNRICHMENT:CVE-2023-7165