The Backup and Restore plugin for WordPress is vulnerable to an attack that allows files to be deleted from the server. This vulnerability affects versions of the plugin up to and including 1.0.3. The attack is possible because the plugin does not properly check and filter user input. To exploit this vulnerability, an attacker must have admin-level privileges.
This information is sourced from www.wpvulnerability.com. An open-source database of vulnerabilities maintained by the community. Help us out by submitting vulnerabilities!
Version compare shows which versions have a vulnerability. For example: >= 2.2.8 <= 2.2.21 means:
> from 2.2.8
= including 2.2.8 & 2.2.21
< to 2.2.21
Is this information incorrect? Please leave us a message.
