CVE-2023-5775

CVSS 3.1 Score 2.2 of 10 (low)

Details

Published Feb 26, 2024

Summary

CVE-2023-5775 is a vulnerability affecting the BackWPup plugin for WordPress. This issue arises due to the plugin storing backup destination passwords in plaintext, making it easily accessible to authenticated attackers. The passwords can be retrieved either from the user interface's password input field or from the plugin's options table. Versions up to and including 4.0.2 of BackWPup are vulnerable to this issue, potentially putting websites using the plugin at risk.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

https://app.recordedfuture.com/live/sc/entity/tI-Ii7
https://www.cve.org/CVERecord?id=CVE-2023-5775
https://nvd.nist.gov/vuln/detail/CVE-2023-5775

Back to Vulnerability Database

CVE-2023-5775

CVSS 3.1 Score 2.2 of 10 (low)

Details

Summary

Advisories, Assessments, and Mitigations