BackWPup – WordPress Backup Plugin, CVE-2023-7164

CVE, Research URL: CVE-2023-7164
Home page URL: Security reports for BackWPup – WordPress Backup Plugin
Application: BackWPup – WordPress Backup Plugin
Published on: Apr 08, 2024
Research Description: The BackWPup WordPress plugin before 4.0.4 does not prevent Directory Listing in its temporary backup folder, allowing unauthenticated attackers to download backups of a site's database.
Affected versions: Min -, max 4.0.4.
Status: vulnerable

BackWPup &#8211; WordPress Backup Plugin, CVE-2023-7164