One Article Review

Accueil - L'article:
Source CVE.webp CVE Liste
Identifiant 8316332
Date de publication 2023-03-07 14:15:09 (vue: 2023-03-07 16:06:51)
Titre CVE-2020-36668
Texte The JetBackup – WP Backup, Migrate & Restore plugin for WordPress is vulnerable to sensitive information disclosure in versions up to, and including, 1.4.0 due to a lack of proper capability checking on the backup_guard_get_manual_modal function called via an AJAX action. This makes it possible for subscriber-level attackers, and above, to invoke the function and obtain database table information.
Envoyé Oui
Condensat 2020 36668 above action ajax attackers backup called capability checking cve database disclosure due function get guard including information invoke jetbackup lack level makes manual migrate modal obtain plugin possible proper restore sensitive subscriber table versions vulnerable wordpress รข€“
Tags
Stories
Notes
Move


L'article ne semble pas avoir été repris aprés sa publication.


L'article ne semble pas avoir été repris sur un précédent.
My email: