cleantalk
Vulnerabilities and Security Researches

Backup Bolt, CVE-2023-7236

CVE, Research URL

CVE-2023-7236

Home page URL

Security reports for Backup Bolt

Application

Backup Bolt

Published on
Mar 19, 2024
Research Description
The Backup Bolt WordPress plugin through 1.3.0 is vulnerable to Information Exposure via the unprotected access of debug logs. This makes it possible for unauthenticated attackers to retrieve the debug log which may contain information like system errors which could contain sensitive information.
Affected versions
Min -, max 1.4.0.
Status
vulnerable
Previous vulnerability researches
Backup Bolt (CVE-2023-7236) , Jun 10, 2024
Backup Bolt (bc0c1fa51c016cd29c9a4fcba7b97da23cfc4c93) , Jun 11, 2024
SK WP Settings Backup (CVE-2024-52415) , Nov 17, 2024
1-Click Backup & Restore Database (CVE-2025-32246) , Apr 06, 2025
WordPress SQL Backup (CVE-2025-30608) , Mar 27, 2025
New vulnerability
Tainacan (CVE-2025-47512) , May 25, 2025
Page Builder: Pagelayer – Drag and Drop website builder (CVE-2025-4223) , May 25, 2025
Page Builder: Pagelayer – Drag and Drop website builder (CVE-2024-13427) , May 25, 2025
miniOrange Discord Integration (CVE-2025-47672) , May 25, 2025
4stats (CVE-2025-3869) , May 24, 2025