Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
wpseeds wp database backup vulnerabilities and exploits
(subscribe to this query)
7.5
CVSSv3
CVE-2020-7241
The WP Database Backup plugin up to and including 5.5 for WordPress stores downloads by default locally in the directory wp-content/uploads/db-backup/. This might allow malicious users to read ZIP archives by guessing random ID numbers, guessing date strings with a 2020_{0..1}{0....
Wpseeds Wp Database Backup
1 Github repository
4.8
CVSSv3
CVE-2022-2271
The WP Database Backup WordPress plugin prior to 5.9 does not escape some of its settings, which could allow high privilege users such as admin to perform Stored Cross-Site Scripting attacks when the unfiltered_html capability is disallowed (for example in multisite setup)
Wpseeds Wp Database Backup
6.1
CVSSv3
CVE-2019-14949
The wp-database-backup plugin prior to 5.1.2 for WordPress has XSS.
Wpseeds Wp Database Backup
6.1
CVSSv3
CVE-2016-10875
The wp-database-backup plugin prior to 4.3.1 for WordPress has XSS.
Wpseeds Wp Database Backup
6.1
CVSSv3
CVE-2016-10873
The wp-database-backup plugin prior to 4.3.3 for WordPress has XSS.
Wpseeds Wp Database Backup
8.8
CVSSv3
CVE-2016-10876
The wp-database-backup plugin prior to 4.3.1 for WordPress has CSRF.
Wpseeds Wp Database Backup
8.8
CVSSv3
CVE-2016-10874
The wp-database-backup plugin prior to 4.3.3 for WordPress has CSRF.
Wpseeds Wp Database Backup
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
type confusion
CVE-2024-20360
CVE-2021-47559
XXE
CVE-2024-5229
CVE-2021-47543
CVE-2021-47571
SSTI
CVE-2024-4978
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started