Security Advisory

CVE-2020-36848

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2025-07-12 11:23:39

Last updated 2026-04-08 17:04:51

Assigner Wordfence

State PUBLISHED

Description

The Total Upkeep – WordPress Backup Plugin plus Restore & Migrate by BoldGrid plugin for WordPress is vulnerable to Sensitive Information Exposure in all versions up to, and including, 1.14.9 via the env-info.php and restore-info.json files. This makes it possible for unauthenticated attackers to find the location of back-up files and subsequently download them.

← Browse all CVEs View on cve.org ↗