Vulnerabilities > Backupbliss > Clone > 2.2.3
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2024-01-08 | CVE-2023-6750 | Unspecified vulnerability in Backupbliss Clone The Clone WordPress plugin before 2.4.3 uses buffer files to store in-progress backup informations, which is stored at a publicly accessible, statically defined file path. | 7.5 |
2023-07-28 | CVE-2023-0958 | Several plugins for WordPress by Inisev are vulnerable to unauthorized installation of plugins due to a missing capability check on the handle_installation function that is called via the inisev_installation AJAX aciton in various versions. network low complexity inisev themecheck mypopups copy-delete-posts backupbliss socialshare ultimatelysocial | 6.5 |
2023-07-28 | CVE-2023-3977 | Several plugins for WordPress by Inisev are vulnerable to Cross-Site Request Forgery to unauthorized installation of plugins due to a missing nonce check on the handle_installation function that is called via the inisev_installation AJAX aciton in various versions. | 4.3 |