One Article Review
| Source |  CVE Liste |
|---|---|
| Identifiant | 8316332 |
| Date de publication | 2023-03-07 14:15:09 (vue: 2023-03-07 16:06:51) |
| Titre | CVE-2020-36668 |
| Texte | The JetBackup – WP Backup, Migrate & Restore plugin for WordPress is vulnerable to sensitive information disclosure in versions up to, and including, 1.4.0 due to a lack of proper capability checking on the backup_guard_get_manual_modal function called via an AJAX action. This makes it possible for subscriber-level attackers, and above, to invoke the function and obtain database table information. |
| Envoyé | Oui |
| Condensat | 2020 36668 above action ajax attackers backup called capability checking cve database disclosure due function get guard including information invoke jetbackup lack level makes manual migrate modal obtain plugin possible proper restore sensitive subscriber table versions vulnerable wordpress รข€“ |
| Tags | |
| Stories | |
| Notes | |
| Move | 
|
L'article ne semble pas avoir été repris aprés sa publication.
L'article ne semble pas avoir été repris sur un précédent.