Buffer Storage Vulnerability in Clone WordPress Plugin Affects Website Security
CVE-2023-6750

7.5HIGH

Key Information:

Vendor: Wordpress
Status: Clone
Vendor: CVE Published:; 8 January 2024

Summary

The Clone WordPress plugin versions prior to 2.4.3 contains a vulnerability that results from the use of buffer files for storing in-progress backup information. These files are saved at a publicly accessible and statically defined file path, severely compromising website security and potentially exposing sensitive data to unauthorized users.

References

https://wpscan.com/vulnerability/fad9eefe-4552-4d20-a1fd-...

CVSS V3.1

Score:

7.5

Severity:

HIGH

Confidentiality:

High

Integrity:

None

Availability:

High

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

None

Scope:

Unchanged

Timeline

Vulnerability published
Jan 8, 2024