The All-in-One WP Migration plugin for WordPress has a security flaw that could allow malicious code to be added to the website. This is because the plugin does not check the description of a backup before adding it to the backup history overview page. This means that any malicious code that is added will be able to run on the website.
This information is sourced from www.wpvulnerability.com. An open-source database of vulnerabilities maintained by the community. Help us out by submitting vulnerabilities!
Version compare shows which versions have a vulnerability. For example: >= 2.2.8 <= 2.2.21 means:
> from 2.2.8
= including 2.2.8 & 2.2.21
< to 2.2.21
Is this information incorrect? Please leave us a message.
