CVE-2024-3054 | WPvivid Backup & Migration Plugin up to 0.9.99 on WordPress PHAR deserialization

Inserito da Angelo Barbosa | Apr 12, 2024 | CVE

A vulnerability, which was classified as problematic, has been found in WPvivid Backup & Migration Plugin up to 0.9.99 on WordPress. Affected by this issue is some unknown functionality of the component PHAR Handler. The manipulation leads to deserialization.

This vulnerability is handled as CVE-2024-3054. Access to the local network is required for this attack to succeed. There is no exploit available.

CVE-2024-3054 | WPvivid Backup & Migration Plugin up to 0.9.99 on WordPress PHAR deserialization

Post correlati

CVE-2023-49646 | Zoom Desktop Client/Mobile App/VDI Client/SDK improper authentication

CVE-2024-23749 | KiTTY up to 0.76.1.13 filename command injection (ID 177031)

CVE-2024-41238 | Kashipara Responsive School Management System 1.0 /smsa/student_login.php username sql injection

CVE-2024-21410 | Microsoft Exchange Server 2016 CU23/2019 CU13/2019 CU14 Remote Code Execution