CVE-2023-7002 | Backup Migration Plugin up to 1.3.9 on WordPress URL os command injection

Posted by Angelo Barbosa | Dec 22, 2023 | CVE

A vulnerability was found in Backup Migration Plugin up to 1.3.9 on WordPress. It has been rated as critical. Affected by this issue is some unknown functionality of the component URL Handler. The manipulation leads to os command injection.

This vulnerability is handled as CVE-2023-7002. The attack can only be initiated within the local network. There is no exploit available.

CVE-2023-7002 | Backup Migration Plugin up to 1.3.9 on WordPress URL os command injection

Related Posts

CVE-2024-2576 | SourceCodester Employee Task Management System 1.0 /update-admin.php admin_id authorization

CVE-2024-24303 | HiPresta Gift Wrapping Pro Module up to 1.4.0 on PrestaShop addGiftWrappingCartValue sql injection

CVE-2024-2462 | Hitachi Energy FOXMAN-UN/FOX61x/FOXCST/UNEM/XMC20/ECST certificate validation

CVE-2024-20301 | Cisco Duo up to 2.0.0 on Windows improper authentication (cisco-sa-duo-win-bypass-pn42KKBm)