Unrated severityNVD Advisory· Published Jan 1, 2024· Updated Jun 18, 2025

WP Staging (Free < 3.1.3, Pro < 5.1.3) - Unauthenticated Backup Download

CVE-2023-6113

Description

The WP STAGING WordPress Backup Plugin before 3.1.3 and WP STAGING Pro WordPress Backup Plugin before 5.1.3 do not prevent visitors from leaking key information about ongoing backups processes, allowing unauthenticated attackers to download said backups later.

Affected products

Unknown/Wp Staging Wordpress Backup Pluginv5
Range: 0

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

wpscan.com/vulnerability/5a71049a-09a6-40ab-a4e8-44634869d4fbmitreexploitvdb-entrytechnical-description
research.cleantalk.org/cve-2023-6113-wp-staging-unauth-sensitive-data-exposure-to-account-takeover-poc-exploit/mitretechnical-description

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.000
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000