CVEDB API - Fast Vulnerability Dashboard

Vulnerabilities

Vulnerable Software

Webtoffee: >> Backup And Migration >> 1.1.2 Security Vulnerabilities

CVE-2024-31254

Insertion of Sensitive Information into Log File vulnerability in WebToffee WordPress Backup & Migration.This issue affects WordPress Backup & Migration: from n/a through 1.4.7.

CVSS Score

3.7

EPSS Score

0.007

Published

2024-04-10

CVE-2023-5737

The WordPress Backup & Migration WordPress plugin before 1.4.4 does not authorize some AJAX requests, allowing users with a role as low as Subscriber to update some plugin settings.

CVSS Score

4.3

EPSS Score

0.001

Published

2023-11-27

CVE-2023-5738

The WordPress Backup & Migration WordPress plugin before 1.4.4 does not sanitise and escape some parameters, which could allow users with a role as low as Subscriber to perform Cross-Site Scripting attacks.

CVSS Score

5.4

EPSS Score

0.001

Published

2023-11-27

Page 1

Products

Pricing

Contact Us

support@shodan.io

Shodan ® - All rights reserved