📚 A missing authorization check in WordPre WPvivid plugin that can lead to the exposure of the database and all files

🕛 Zeit seit Veröffentlichung: 1492 Tage, 1 Stunden 36 Minuten
📆 Veröffentlicht am: 27.03.2020 um 11:45 Uhr
💡 Newskategorie: Hacking
🔗 Quelle: securityaffairs.co

Researchers warn of a security flaw recently addressed in the WPvivid Backup Plugin that could be exploited to obtain all files of a WordPress website. WebARX experts warn of a missing authorization check recently addressed in the WPvivid Backup Plugin that could be exploited to obtain all files of a WordPress website. “There is a missing […]

The post A missing authorization check in WordPre WPvivid plugin that can lead to the exposure of the database and all files appeared first on Security Affairs.

...

Sharing is caring on Social Media

Join the Team IT Security Community

📌 A missing authorization check in WordPre WPvivid plugin that can lead to the exposure of the database and all files

🕛 1492 Tage, 1 Stunden 6 Minuten
📆 27.03.2020 um 11:45 Uhr
📈 146.88 Punkte

📌 CVE-2024-1982 | WPvivid Backup and Migration Plugin up to 0.9.68 on WordPress authorization

🕛 38 Tage, 11 Stunden 45 Minuten
📆 03.04.2024 um 10:24 Uhr
📈 43.62 Punkte

📌 CVE-2023-4637 | WPvivid Plugin up to 0.9.94 on WordPress authorization (ID 3023214)

🕛 71 Tage, 22 Stunden 25 Minuten
📆 15.02.2024 um 14:44 Uhr
📈 41.84 Punkte

📌 WPvivid Backup Plugin Flaw Leads to WordPress Database Leak

🕛 1494 Tage, 22 Stunden 5 Minuten
📆 24.03.2020 um 14:10 Uhr
📈 40.11 Punkte

📌 Vulnerability In WPvivid Backup Plugin Could Expose Files Of WordPress Sites

🕛 1487 Tage, 19 Stunden 51 Minuten
📆 31.03.2020 um 16:51 Uhr
📈 39.79 Punkte

📌 CVE-2024-1981 | WPvivid Backup and Migration Plugin up to 0.9.68 on WordPress sql injection

🕛 38 Tage, 11 Stunden 45 Minuten
📆 03.04.2024 um 10:12 Uhr
📈 34.5 Punkte

📌 CVE-2023-5576 | WPvivid Plugin up to 0.9.91 on WordPress Google Drive Client Secret information disclosure (ID 2977863)

🕛 177 Tage, 3 Stunden 11 Minuten
📆 02.11.2023 um 09:38 Uhr
📈 32.72 Punkte

📌 CVE-2024-1383 | WPvivid Plugin up to 0.9.32 on WordPress cross site scripting

🕛 38 Tage, 12 Stunden 58 Minuten
📆 03.04.2024 um 09:07 Uhr
📈 32.72 Punkte

📌 pyHAWK - Searches The Directory Of Choice For Interesting Files. Such As Database Files And Files With Passwords Stored On Them

🕛 1956 Tage, 14 Stunden 36 Minuten
📆 18.12.2018 um 22:12 Uhr
📈 30.38 Punkte

📌 I am thinking of writing a tool for deleting files and saving hashes of deleted files, so that other versions of these files can be identified and deleted later

🕛 1101 Tage, 21 Stunden 7 Minuten
📆 21.04.2021 um 16:03 Uhr
📈 29.3 Punkte

📌 OSIPs - Gathers All Valid IP Addresses From All Text Files From A Directory, And Checks Them Against Whois Database, TOR Relays And Location

🕛 679 Tage, 6 Stunden 18 Minuten
📆 17.06.2022 um 23:30 Uhr
📈 28.63 Punkte

📌 OSIPs – Gathers All Valid IP Addresses From All Text Files From A Directory, And Checks Them Against Whois Database, TOR Relays And Location

🕛 679 Tage, 6 Stunden 18 Minuten
📆 18.06.2022 um 03:39 Uhr
📈 28.63 Punkte

📌 Database Plugin up to 1.6 on Jenkins Permission Check authorization

🕛 1263 Tage, 4 Stunden 4 Minuten
📆 11.11.2020 um 08:06 Uhr
📈 28.52 Punkte

📌 Catching Configuration Changes that Can Lead to Data Exposure

🕛 1978 Tage, 7 Stunden 5 Minuten
📆 27.11.2018 um 05:01 Uhr
📈 28.03 Punkte

📌 Flaws in Philips Patient Monitoring Products Can Lead to Patient Data Exposure

🕛 1319 Tage, 2 Stunden 50 Minuten
📆 16.09.2020 um 10:04 Uhr
📈 28.03 Punkte

📌 WordPress WPvivid Backup Path Traversal

🕛 570 Tage, 18 Stunden 20 Minuten
📆 04.10.2022 um 18:25 Uhr
📈 27.54 Punkte

📌 #0daytoday #WordPress WPvivid Backup Path Traversal Vulnerability CVE-2022-2863 [webapps #exploits #Vulnerability #0day #Exploit]

🕛 557 Tage, 16 Stunden 32 Minuten
📆 05.10.2022 um 07:48 Uhr
📈 27.54 Punkte

📌 You are missing .installer folder. Not sure how to fix this issue as it says I’m missing a folder when it’s right there but for some reason the folder is lighter than the others. That folder only appears when I check show hidden folders. Why’s the

🕛 697 Tage, 9 Stunden 37 Minuten
📆 31.05.2022 um 03:29 Uhr
📈 26.03 Punkte

📌 CVE-2022-23180 | Contact Form & Lead Form Elementor Builder Plugin up to 1.7.3 on WordPress Setting authorization (ID 2670484)

🕛 80 Tage, 22 Stunden 27 Minuten
📆 06.02.2024 um 14:37 Uhr
📈 25.52 Punkte

📌 Missing sanitization within the REST API can lead to XSS

🕛 10 Tage, 3 Stunden 37 Minuten
📆 01.11.2021 um 11:06 Uhr
📈 25.35 Punkte

📌 [20200702] - Core - Missing checks can lead to a broken usergroups table record

🕛 1382 Tage, 20 Stunden 5 Minuten
📆 14.07.2020 um 15:00 Uhr
📈 25.35 Punkte

📌 [SYSS-2018-041] Mozilla Firefox - Information Exposure (found an exploit where an attacker can upload files trough malicious downloaded HTML file in the same folder)

🕛 1926 Tage, 15 Stunden 37 Minuten
📆 17.01.2019 um 20:56 Uhr
📈 23.88 Punkte

📌 Possible indexed activation screen could lead to exposure of sensitive information

🕛 1704 Tage, 5 Stunden 48 Minuten
📆 20.12.2018 um 10:18 Uhr
📈 23.49 Punkte

📌 Lead Exposure Kills Hundreds of Thousands of Adults Every Year in the US, Study Finds

🕛 2230 Tage, 2 Stunden 6 Minuten
📆 20.03.2018 um 10:00 Uhr
📈 23.49 Punkte

📌 Lead Exposure Kills Hundreds of Thousands of Adults Every Year in the US, Study Finds

🕛 2230 Tage, 2 Stunden 6 Minuten
📆 20.03.2018 um 10:00 Uhr
📈 23.49 Punkte

📌 Matrix Authorization Strategy Plugin up to 2.6.5 on Jenkins authorization

🕛 1121 Tage, 1 Stunden 6 Minuten
📆 02.04.2021 um 13:44 Uhr
📈 23.41 Punkte

📌 Role-based Authorization Strategy Plugin up to 3.1 on Jenkins Item/Read authorization

🕛 1121 Tage, 0 Stunden 5 Minuten
📆 02.04.2021 um 13:56 Uhr
📈 23.41 Punkte

📌 CVE-2023-28668 | Role-based Authorization Strategy Plugin up to 587.v2872c41fa_e51 on Jenkins improper authorization

🕛 371 Tage, 22 Stunden 1 Minuten
📆 21.04.2023 um 15:08 Uhr
📈 23.41 Punkte

📌 CVE-2024-24850 | Mark Stockton Quicksand Post Filter jQuery Plugin up to 3.1.1 on WordPress Authorization authorization

🕛 5 Tage, 18 Stunden 26 Minuten
📆 03.05.2024 um 14:28 Uhr
📈 23.41 Punkte

📌 CVE-2022-39018 | M-Files M-Files Hubshare up to 3.3.11.2 PDFtron authorization

🕛 514 Tage, 2 Stunden 2 Minuten
📆 30.11.2022 um 09:58 Uhr
📈 23.26 Punkte

📌 Big IQ play from IT outsourcer: Can't create batch files if you can't save files. Of any kind

🕛 1300 Tage, 3 Stunden 5 Minuten
📆 05.10.2020 um 09:15 Uhr
📈 23.21 Punkte

📌 I want to save all of my game footage, movies, tv shows on one hard drive, and then connect it to my television. I envision using LINUX for my GUI+OS to navigate the files and play the files.

🕛 1074 Tage, 2 Stunden 52 Minuten
📆 19.05.2021 um 09:44 Uhr
📈 23.01 Punkte

📌 CVE-2023-6114 | Duplicator Plugin/Duplicator Pro Plugin on WordPress backups-dup-lite/tmp exposure of information through directory listing

🕛 98 Tage, 23 Stunden 12 Minuten
📆 19.01.2024 um 13:54 Uhr
📈 22.63 Punkte

📌 Two flaws that could lead to Potential lead to RCE fixed by OpenSSL project team

🕛 659 Tage, 3 Stunden 48 Minuten
📆 08.07.2022 um 11:29 Uhr
📈 22.44 Punkte

📌 Uncover Malware Payload Executions Automatically with Tracee! Check out the new blog my teammate Yaniv Agman wrote! Explaining how you can use Tracee Aqua’s open source container and system tracing utility to capture files executed from memory and ev

🕛 1347 Tage, 0 Stunden 49 Minuten
📆 19.08.2020 um 11:48 Uhr
📈 22 Punkte

🏠 Team IT Security News

📚 A missing authorization check in WordPre WPvivid plugin that can lead to the exposure of the database and all files

Sharing is caring on Social Media

Join the Team IT Security Community