Backupbuddy - importbuddy.php Direct Request Remote Backup File Disclosure

Affects Plugin

fixed in version 3.0

References

CVE 2013-2741
PACKETSTORM 120923
URL https://seclists.org/fulldisclosure/2013/Mar/206

Classification

Type AUTHBYPASS
OWASP Top 10 A2: Broken Authentication and Session Management
CWE CWE-287

Miscellaneous

Views 4261
Verified No
WPVDB ID 6782

Timeline

Publicly Published 2013-03-24 (almost 7 years ago)
Added 2014-08-01 (over 5 years ago)
Last Updated 2019-10-21 (4 months ago)

Our Other Services

Online WordPress Vulnerability Scanner WPScan WordPress Security Plugin