Global CyberSecurity

Critical RCE Vulnerability Patched in Backup Migration Plugin

By OTC 12/13/2023

Post Views: 422

Published on 12/13/2023 – Last Updated on 12/14/2023 by OTC

On December 6th, 2023, the WordPress plugin Backup Migration received a critical security patch for a remote code execution vulnerability. Details were released five days later after users were given an opportunity to install the patch, although the official CVE is still locked down in “reserved” mode.

Website administrators are advised to update to the most recent version 1.3.8 which contains several crucial security improvements. The vulnerability is ranked as 9.8 on the CVSS scale, so it’s about as bad as you can get.

Continue reading Critical RCE Vulnerability Patched in Backup Migration Plugin at Sucuri Blog.

Comments

Comments are closed.

More in Global CyberSecurity

Global CyberSecurity

Critical RCE Vulnerability Patched in Backup Migration Plugin

WPScan Intro: How to Scan for WordPress Vulnerabilities

Analysis of the Fake WordPress CVE-2023-46182 Patch Plugin & Phishing Campaign

Comments

More in Global CyberSecurity

PHP Reinfector and Backdoor Malware Target WordPress Sites

Malware Steals Account Credentials

2024 Credit Card Theft Season Arrives

Cyber-Space

Simple Include Statement Hides Casino Spam

PHP Reinfector and Backdoor Malware Target WordPress Sites

Malware Steals Account Credentials

PHMC GPE LLC

Social EYK

Economy & Finance

WPScan Intro: How to Scan for WordPress Vulnerabilities

Analysis of the Fake WordPress CVE-2023-46182 Patch Plugin & Phishing Campaign

You may also like

Comments

More in Global CyberSecurity

Cyber-Space

PHMC GPE LLC

Social EYK