First published: Tue Apr 02 2013(Updated: )
importbuddy.php in the BackupBuddy plugin 1.3.4, 2.1.4, 2.2.25, 2.2.28, and 2.2.4 for WordPress allows remote attackers to bypass authentication via a crafted integer in the step parameter.
Credit: cve@mitre.org
Affected Software | Affected Version | How to fix |
---|---|---|
Ithemes Backupbuddy | =1.3.4 | |
Ithemes Backupbuddy | =2.1.4 | |
Ithemes Backupbuddy | =2.2.4 | |
Ithemes Backupbuddy | =2.2.25 | |
Ithemes Backupbuddy | =2.2.28 | |
WordPress WordPress |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.