RSS   Podatności dla 'Wp database backup'   RSS

2020-01-20
 
CVE-2020-7241

CWE-552
 
 
The WP Database Backup plugin through 5.5 for WordPress stores downloads by default locally in the directory wp-content/uploads/db-backup/. This might allow attackers to read ZIP archives by guessing random ID numbers, guessing date strings with a 2020_{0..1}{0..2}_{0..3}{0..9} format, guessing UNIX timestamps, and making HTTPS requests with the complete guessed URL.

 
2019-08-12
 
CVE-2019-14949

CWE-79
 
 
The wp-database-backup plugin before 5.1.2 for WordPress has XSS.

 
 
CVE-2016-10876

CWE-352
 
 
The wp-database-backup plugin before 4.3.1 for WordPress has CSRF.

 
 
CVE-2016-10875

CWE-79
 
 
The wp-database-backup plugin before 4.3.1 for WordPress has XSS.

 
 
CVE-2016-10874

CWE-352
 
 
The wp-database-backup plugin before 4.3.3 for WordPress has CSRF.

 
 
CVE-2016-10873

CWE-79
 
 
The wp-database-backup plugin before 4.3.3 for WordPress has XSS.

 

Copyright 2024, cxsecurity.com

 

Back to Top