Lucene search
Dmitrii IgnatyevWPEX-ID:AD1EF4C5-60C1-4729-81DD-F626AA0CE3FEHistoryFeb 02, 2024 - 12:00 a.m.
JetBackup < 2.0.9.9 - Directory Listing Exposing Backups
2024-02-0200:00:00
Dmitrii Ignatyev
128
jetbackup
directory listing
exposing backups
vulnerability
backup function
directory scanner
Description The plugin doesn’t use index files to prevent public directory listing of sensitive directories in certain configurations, which allows malicious actors to leak backup files. A partial fix was released in 2.0.9.6, removing the ability to list the directory but still allowing direct access to the files by only guessing the timestamp of the backup.
1) Run backup function http://your_site/wordpress/wp-admin/admin.php?page=backup_guard_backups
2) When the scan is over, the attacker must sort through the directory "/wordpress/wp-content/uploads/jetbackup/*", after which there will be a Directory Listing vulnerability in it, which will allow pumping out all backup and all logs. This vulnerability will be available if a person names the file in a simple way.Related
nvd
nvd
CVE-2023-7165
2024-02-27 09:15:37
wpvulndb
wpvulndb
JetBackup < 2.0.9.9 - Directory Listing Exposing Backups
2024-02-02 00:00:00
prion
prion
Information disclosure
2024-02-27 09:15:00
vulnrichment
vulnrichment
CVE-2023-7165 JetBackup < 2.0.9.9 - Directory Listing Exposing Backups
2024-02-27 08:30:30
cvelist
cvelist
CVE-2023-7165 JetBackup < 2.0.9.9 - Directory Listing Exposing Backups
2024-02-27 08:30:30
cve
cve
CVE-2023-7165
2024-02-27 09:15:37
wordfence
wordfence
AI Score
9.2
Confidence
High
EPSS
0
Percentile
9.0%
Related for WPEX-ID:AD1EF4C5-60C1-4729-81DD-F626AA0CE3FE