Total Upkeep – WordPress Backup Plugin plus Restore & Migrate by BoldGrid, CVE-2020-36848
- CVE, Research URL
- Home page URL
-
Security reports for Total Upkeep – WordPress Backup Plugin plus Restore & Migrate by BoldGrid
- Published on
- Jul 12, 2025
- Research Description
- The Total Upkeep – WordPress Backup Plugin plus Restore & Migrate by BoldGrid plugin for WordPress is vulnerable to Sensitive Information Exposure in all versions up to, and including, 1.14.9 via the env-info.php and restore-info.json files. This makes it possible for unauthenticated attackers to find the location of back-up files and subsequently download them.
- Affected versions
-
max 1.14.10.
- Status
-
vulnerable