WordPress.Plugin.Backup.Guard.Arbitrary.PHP.File.Upload
Description
This indicates an attack attempt to exploit an Arbitrary File Upload Vulnerability in Wordpress Plugin Backup Guard.
The vulnerability is due to insufficient input validation while uploading files. An remote, authenticated attacker can exploit this vulnerability by uploading a crafted file to the target server. Results in the writing of an arbitrary file to the target server, potentially leading to the execution of arbitrary code.
Affected Products
WordPress Plugin Backup Guard before version 1.6.0
Impact
System Compromise: Remote attackers can gain control of vulnerable systems.
Recommended Actions
Apply the most recent upgrade or patch from the vendor.
https://wpscan.com/vulnerability/d442acac-4394-45e4-b6bb-adf4a40960fb?__cf_chl_jschl_tk__=pmd_e638186fc74c1587ea8c273742a19d65f446a6e0-1628199775-0-gqNtZGzNAk2jcnBszQiO
Telemetry
Coverage
IPS (Regular DB) | |
IPS (Extended DB) |