WordPress Plugin Vulnerabilities

Backup Migration < 1.4.0 - Authenticated (Admin+) OS Command Injection via url

Description

The Backup Migration plugin for WordPress is vulnerable to OS Command Injection in all versions up to, and including, 1.3.9 via the 'url' parameter. This vulnerability allows authenticated attackers, with administrator-level permissions and above, to execute arbitrary commands on the host operating system.

Affects Plugins

Plugin icon
backup-backup
Fixed in 1.4.0

References

CVE
CVE-2023-7002
URL
https://www.wordfence.com/threat-intel/vulnerabilities/id/cc49db10-988d-42bd-a9cf-9a86f4c79568

Classification

Type
COMMAND INJECTION
OWASP top 10
A1: Injection
CWE
CWE-78
CVSS
7.2 (high)

Miscellaneous

Original Researcher
Françoa Taffarel
Verified
No
WPVDB ID
3e647712-def6-4e15-ba0b-02c57c44265c

Timeline

Publicly Published
2023-12-22 (about 4 months ago)
Added
2023-12-22 (about 4 months ago)
Last Updated
2024-01-22 (about 3 months ago)

Other

Published
Title
Published
2023-10-05
Title
Newsletter Lite < 4.9.3 - Admin+ Command Injection
Published
2021-09-15
Title
PDF Light Viewer < 1.4.12 - Authenticated Command Injection
Published
2022-07-22
Title
VR Calendar < 2.3.2 - Unauthenticated Arbitrary Function Call
Published
2024-05-09
Title
Unlimited Elements For Elementor (Free Widgets, Addons, Templates) < 1.5.103 - Admin+ Command Injection
Published
2022-10-18
Title
ImageMagick-Engine < 1.7.6 - Command Injection via CSRF