| |
Vulnerability CVE-2022-2863
Published: 2022-09-16
| Description: |
The Migration, Backup, Staging WordPress plugin before 0.9.76 does not sanitise and validate a parameter before using it to read the content of a file, allowing high privilege users to read any file from the web server via a Traversal attack |
Type:
CWE-22 (Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal'))
References: |
https://wpscan.com/vulnerability/cb6a3304-2166-47a0-a011-4dcacaa133e5
|
|
|
Copyright 2024, cxsecurity.com
|
|
|
