Back to search
CVE-2024-7315
Published: Oct 2, 2024
Modified: Aug 27, 2025
PUBLISHED
Description
The Migration, Backup, Staging WordPress plugin before 0.9.106 does not use sufficient randomness in the filename that is created when generating a backup, which could be bruteforced by attackers to leak sensitive information about said backups.
| Vendor | Product | Versions |
|---|---|---|
Unknown | Migration, Backup, Staging | affected 0.9.103 - < 0.9.106 |
References
https://wpscan.com/vulnerability/456b728b-a451-4afb-895f-850ddc4fb589/
exploit
vdb-entry
technical-description
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now