A vulnerability classified as critical has been found in Backup Migration Plugin up to 1.4.6 on WordPress. Affected is the function
recursive_unserialize_replace
. The manipulation leads to code injection.
This vulnerability is traded as CVE-2024-10932. It is possible to launch the attack remotely. There is no exploit available.