← voltar
CVE-2023-7002

Backup Migration <= 1.3.9 - Authenticated (Admin+) OS Command Injection via url

CVSS 7.2 HIGHEPSS 45.9%CWE-78
Vexday Risk Score
33Atenção
Decisão SSVC (CISA)
Track
Sem sinal de exploração → monitorar
CVSS 7.2EPSS 45.9%KEV nãoPoC Nuclei Metasploit Patch
Ciclo de vida
23 dez 2023Publicada no NVD
Recomendação: Monitorar — sem sinal de exploração no momento.
The Backup Migration plugin for WordPress is vulnerable to OS Command Injection in all versions up to, and including, 1.3.9 via the 'url' parameter. This vulnerability allows authenticated attackers, with administrator-level permissions and above, to execute arbitrary commands on the host operating system.
CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H
Produtos afetados
inisev · BackupBliss – Backup & Migration with Free Cloud Storage

Quer saber se a sua infraestrutura está exposta a isto?

Falar com a TrueHacking →
Referências
https://plugins.trac.wordpress.org/browser/backup-backup/tags/1.3.9/includes/ajax.php#L1503https://plugins.trac.wordpress.org/browser/backup-backup/tags/1.3.9/includes/ajax.php#L1518https://plugins.trac.wordpress.org/browser/backup-backup/tags/1.3.9/includes/ajax.php#L88https://plugins.trac.wordpress.org/changeset/3012745/backup-backuphttps://www.linuxquestions.org/questions/linux-security-4/php-function-exec-enabled-how-big-issue-4175508082/https://www.wordfence.com/threat-intel/vulnerabilities/id/cc49db10-988d-42bd-a9cf-9a86f4c79568?source=cve