Vulnerabilities > Jetbackup

DATE CVE VULNERABILITY TITLE RISK
2023-03-15 CVE-2022-34148 Cross-site Scripting vulnerability in Jetbackup
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in JetBackup JetBackup – WP Backup, Migrate & Restore plugin <= 1.6.9.0 versions.
network
low complexity
jetbackup CWE-79
4.8
2023-03-07 CVE-2020-36667 Unspecified vulnerability in Jetbackup
The JetBackup – WP Backup, Migrate & Restore plugin for WordPress is vulnerable to unauthorized back-up location changes in versions up to, and including 1.4.1 due to a lack of proper capability checking on the backup_guard_cloud_dropbox, backup_guard_cloud_gdrive, and backup_guard_cloud_oneDrive functions.
network
low complexity
jetbackup
5.4
2023-03-07 CVE-2020-36668 Unspecified vulnerability in Jetbackup
The JetBackup – WP Backup, Migrate & Restore plugin for WordPress is vulnerable to sensitive information disclosure in versions up to, and including, 1.4.0 due to a lack of proper capability checking on the backup_guard_get_manual_modal function called via an AJAX action.
network
low complexity
jetbackup
4.3
2023-03-07 CVE-2020-36669 Unspecified vulnerability in Jetbackup
The JetBackup – WP Backup, Migrate & Restore plugin for WordPress is vulnerable to Cross-Site Request Forgery in versions up to, and including 1.3.9.
network
low complexity
jetbackup
8.8