WordPress BackWPup Plugin Mutliple Directory Traversal Vulnerabilities Network Vulnerability

Summary

This host is installed with WordPress BackWPup Plugin and is prone to multiple directory traversal vulnerabilities.

Impact

Successful exploitation could allow attackers to perform directory traversal attacks and read arbitrary files on the affected application. Impact Level: Application

Solution

Upgrade to WordPress BackWPup Plugin version 1.4.1 or later For updates refer to http://wordpress.org/extend/plugins/backwpup/

Insight

Input passed via the 'wpabs' parameter to wp-content/plugins/backwpup/app/options-view_log-iframe.php (when logfile is set to an existing file) and to wp-content/plugins/backwpup/app/options-runnow-iframe.php (when jobid is set to a numeric value) is not properly verified before being used to include files.

Affected

WordPress BackWPup Plugin Version prior to 1.4.1

References

http://seclists.org/fulldisclosure/2011/Feb/663
http://secunia.com/advisories/43565
http://www.osvdb.org/71242
http://www.osvdb.org/71243

Updated on 2015-03-25

Severity

Classification

CVE CVE-2011-5208

CVSS	Base Score: 5.0 AV:N/AC:L/Au:N/C:P/I:N/A:N

Related Vulnerabilities

Apache mod_proxy_ftp Wildcard Characters XSS Vulnerability
AN Guestbook Local File Inclusion Vulnerability
Apache Tomcat HTTP BIO Connector Information Disclosure Vulnerability
Apache Tomcat SecurityConstraints Security Bypass Vulnerability
appRain CMF 'uploadify.php' Remote Arbitrary File Upload Vulnerability

Take action and discover your vulnerabilities