VYPR
Unrated severityNVD Advisory· Published Apr 8, 2024· Updated Aug 30, 2024

BackWPup < 4.0.4 - Unauthenticated Backup Download

CVE-2023-7164

Description

The BackWPup WordPress plugin before 4.0.4 does not prevent Directory Listing in its temporary backup folder, allowing unauthenticated attackers to download backups of a site's database.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

1

Patches

Vulnerability mechanics

References

1

News mentions

0

No linked articles in our index yet.