Vulnerabilities > CVE-2022-2863 - Unspecified vulnerability in Wpvivid Migration, Backup, Staging

047910
CVSS 4.9 - MEDIUM
Attack vector
NETWORK
Attack complexity
LOW
Privileges required
HIGH
Confidentiality impact
HIGH
Integrity impact
NONE
Availability impact
NONE
network
low complexity
wpvivid

Summary

The Migration, Backup, Staging WordPress plugin before 0.9.76 does not sanitise and validate a parameter before using it to read the content of a file, allowing high privilege users to read any file from the web server via a Traversal attack

Vulnerable Configurations

Part Description Count
Application
Wpvivid
76