Lucene search
PatchstackVULNRICHMENT:CVE-2023-52183HistoryJun 11, 2024 - 1:37 p.m.
CVE-2023-52183 WordPress WordPress Backup & Migration plugin <= 1.4.3 - Broken Access Control vulnerability
2024-06-1113:37:12
CWE-862
Patchstack
github.com
1
cve-2023-52183
wordpress
backup & migration
broken access control
missing authorization.
5.4 Medium
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
LOW
Availability Impact
LOW
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:L
7 High
AI Score
Confidence
High
0.0004 Low
EPSS
Percentile
9.0%
Missing Authorization vulnerability in WebToffee WordPress Backup & Migration.This issue affects WordPress Backup & Migration: from n/a through 1.4.3.
CNA Affected
[
{
"vendor": "WebToffee",
"product": "WordPress Backup & Migration",
"versions": [
{
"status": "affected",
"changes": [
{
"at": "1.4.4",
"status": "unaffected"
}
],
"version": "n/a",
"versionType": "custom",
"lessThanOrEqual": "1.4.3"
}
],
"packageName": "wp-migration-duplicator",
"collectionURL": "https://wordpress.org/plugins",
"defaultStatus": "unaffected"
}
]
5.4 Medium
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
LOW
Availability Impact
LOW
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:L
7 High
AI Score
Confidence
High
0.0004 Low
EPSS
Percentile
9.0%
Related for VULNRICHMENT:CVE-2023-52183