Vulnerabilities > CVE-2017-2551 - Files or Directories Accessible to External Parties vulnerability in Inpsyde Backwpup

047910
CVSS 5.0 - MEDIUM
Attack vector
NETWORK
Attack complexity
LOW
Privileges required
NONE
Confidentiality impact
PARTIAL
Integrity impact
NONE
Availability impact
NONE
network
low complexity
inpsyde
CWE-552
NVD
Published: 2017-09-28
Updated: 2017-10-10

Summary

Vulnerability in Wordpress plugin BackWPup before v3.4.2 allows possible brute forcing of backup file for download.

Vulnerable Configurations

Part Description Count
Application
Inpsyde
1

Common Weakness Enumeration (CWE)

References