← volver
CVE-2023-7002

Backup Migration <= 1.3.9 - Authenticated (Admin+) OS Command Injection via url

CVSS 7.2 HIGHEPSS 45.9%CWE-78
Vexday Risk Score
33Atención
Decisión SSVC (CISA)
Track
Sin señal de explotación → monitorear
CVSS 7.2EPSS 45.9%KEV nãoPoC Nuclei Metasploit Patch
Ciclo de vida
23 dic 2023Publicada en NVD
Recomendación: Monitorear — sin señal de explotación por ahora.
The Backup Migration plugin for WordPress is vulnerable to OS Command Injection in all versions up to, and including, 1.3.9 via the 'url' parameter. This vulnerability allows authenticated attackers, with administrator-level permissions and above, to execute arbitrary commands on the host operating system.
CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H
Productos afectados
inisev · BackupBliss – Backup & Migration with Free Cloud Storage

¿Quieres saber si tu infraestructura está expuesta a esto?

Hablar con TrueHacking →
Referencias
https://plugins.trac.wordpress.org/browser/backup-backup/tags/1.3.9/includes/ajax.php#L1503https://plugins.trac.wordpress.org/browser/backup-backup/tags/1.3.9/includes/ajax.php#L1518https://plugins.trac.wordpress.org/browser/backup-backup/tags/1.3.9/includes/ajax.php#L88https://plugins.trac.wordpress.org/changeset/3012745/backup-backuphttps://www.linuxquestions.org/questions/linux-security-4/php-function-exec-enabled-how-big-issue-4175508082/https://www.wordfence.com/threat-intel/vulnerabilities/id/cc49db10-988d-42bd-a9cf-9a86f4c79568?source=cve