The Migration, Backup, Staging WordPress plugin before 0...
Moderate severity
Unreviewed
Published
Sep 17, 2022
to the GitHub Advisory Database
•
Updated Jan 27, 2023
Description
Published by the National Vulnerability Database
Sep 16, 2022
Published to the GitHub Advisory Database
Sep 17, 2022
Last updated
Jan 27, 2023
The Migration, Backup, Staging WordPress plugin before 0.9.76 does not sanitise and validate a parameter before using it to read the content of a file, allowing high privilege users to read any file from the web server via a Traversal attack
References