cleantalk
Vulnerabilities and Security Researches

BackWPup – WordPress Backup Plugin, CVE-2013-4626

CVE, Research URL

CVE-2013-4626

Home page URL

Security reports for BackWPup – WordPress Backup Plugin

Application

BackWPup – WordPress Backup Plugin

Published on
Sep 26, 2013
Research Description
Cross-site scripting (XSS) vulnerability in the BackWPup plugin before 3.0.13 for WordPress allows remote attackers to inject arbitrary web script or HTML via the tab parameter to wp-admin/admin.php.
Affected versions
max 3.0.13.
Status
vulnerable
Previous vulnerability researches
BackWPup – WordPress Backup Plugin , May 27, 2025
BackWPup – WordPress Backup Plugin (CVE-2025-10579) , Nov 10, 2025
BackWPup – WordPress Backup Plugin (CVE-2017-2551) , Jun 07, 2024
BackWPup – WordPress Backup Plugin (CVE-2011-5208) , Jun 07, 2024
BackWPup – WordPress Backup Plugin (CVE-2013-4626) , Jun 07, 2024
New vulnerability
NGINX Cache Optimizer (CVE-2025-12014) , Nov 11, 2025
Author: Munzir (CVE-2025-58916) , Nov 11, 2025
Watu Quiz (CVE-2025-11238) , Nov 11, 2025
Advanced Custom Fields : CPT Options Pages (CVE-2025-60208) , Nov 11, 2025
Doliconnect (CVE-2025-53574) , Nov 11, 2025