Get a demo
100% Signal 0% Noise Invicti Logo - The Largest Dynamic Application Security Solutions Provider In The World Get a demo
Wordpress Plugin Backup Migration Improper Limitation of a Pathname to a Restricted Directory (Path Traversal) Vulnerability - CVE-2023-6972 - Vulnerability Database
Wordpress Plugin Backup Migration

Wordpress Plugin Backup Migration Improper Limitation of a Pathname to a Restricted Directory (Path Traversal) Vulnerability - CVE-2023-6972

Critical
Reference: CVE-2023-6972
NVD Link: https://nvd.nist.gov/vuln/detail/CVE-2023-6972
Title: Wordpress Plugin Backup Migration Improper Limitation of a Pathname to a Restricted Directory (Path Traversal) Vulnerability
Overview:

The Backup Migration plugin for WordPress is vulnerable to Path Traversal in all versions up to and including 1.3.9 via the 39content-backups39 and 39content-name39 39content-manifest39 or 39content-bmitmp39 and 39content-identy39 HTTP headers. This makes it possible for unauthenticated attackers to delete arbitrary files including the wp-config.php file which can make site takeover and remote code execution possible.