Log out
Get PRO

Latest

Input validation vulnerability in Backup Migration 1.3.7

  • Severity: critical
  • Status: Fixed
  • Publication: December 11, 2023

The Backup Migration plugin for WordPress has a vulnerability that allows attackers to take control of the server. This vulnerability exists in all versions up to version 1.3.7 and is caused by attackers being able to control the values passed to an include file called /includes/backup-heart.php. This could allow unauthenticated attackers to access and execute code on the server.

Detected in:

Backup Migration fixed vulnerable versions: >= * <= 1.3.7

This information is sourced from www.wpvulnerability.com. An open-source database of vulnerabilities maintained by the community. Help us out by submitting vulnerabilities!

Version compare shows which versions have a vulnerability. For example: >= 2.2.8 <= 2.2.21 means:

> from 2.2.8
= including 2.2.8 & 2.2.21
< to 2.2.21

  • Incorrect?

Is this information incorrect? Please leave us a message.