CVE-2023-6750

CVSS 3.1 Score 7.5 of 10 (high)

Details

Published Jan 8, 2024

Updated: Jan 11, 2024

Summary

CVE-2023-6750 is a vulnerability affecting the Clone WordPress plugin before version 2.4.3. This issue arises due to the use of buffer files to store in-progress backup information. The problem lies in the static file path where these buffer files are stored, making them publicly accessible. An attacker could potentially exploit this vulnerability to gain sensitive information or perform unauthorized actions on the affected WordPress site. It is recommended that users update to the latest version of the plugin to mitigate this risk.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

https://app.recordedfuture.com/live/sc/entity/tyFCAr
https://www.cve.org/CVERecord?id=CVE-2023-6750
https://nvd.nist.gov/vuln/detail/CVE-2023-6750

Back to Vulnerability Database

CVE-2023-6750

CVSS 3.1 Score 7.5 of 10 (high)

Details

Summary

Advisories, Assessments, and Mitigations