CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2021-24172

The VM Backups WordPress plugin through 1.0 does not have CSRF checks, allowing attackers to make a logged in user unwanted actions, such as generate backups of the DB, plugins, and current .

Exploit prediction scoring system (EPSS) score

EPSS Score 0.001

EPSS Ranking 29.0%

CVSS Severity

CVSS v3 Score 4.3

CVSS v2 Score 4.3

References

https://wpscan.com/vulnerability/187e6967-6961-4843-a9d5-866f6ebdb7bc
https://wpscan.com/vulnerability/187e6967-6961-4843-a9d5-866f6ebdb7bc

Products affected by CVE-2021-24172

Vm Backups Project » Vm Backups » Version: N/A

cpe:2.3:a:vm_backups_project:vm_backups:-
Vm Backups Project » Vm Backups » Version: 1.0

cpe:2.3:a:vm_backups_project:vm_backups:1.0

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2021-24172

Products

Pricing

Contact Us