CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2013-2744

importbuddy.php in the BackupBuddy plugin 2.2.25 for WordPress allows remote attackers to obtain configuration information via a step 0 phpinfo action, which calls the phpinfo function.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.003

EPSS Ranking 49.3%

CVSS Severity

CVSS v2 Score 5.0

References

http://archives.neohapsis.com/archives/fulldisclosure/2013-03/0205.html
http://packetstormsecurity.com/files/120923
http://archives.neohapsis.com/archives/fulldisclosure/2013-03/0205.html
http://packetstormsecurity.com/files/120923

Products affected by CVE-2013-2744

Ithemes » Backupbuddy » Version: 2.2.25

cpe:2.3:a:ithemes:backupbuddy:2.2.25
Wordpress » Wordpress » Version: N/A

cpe:2.3:a:wordpress:wordpress:-

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2013-2744

Products

Pricing

Contact Us