Security Advisory

CVE-2024-0697

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2024-01-27 04:31:29

Last updated 2026-04-08 17:00:27

Assigner Wordfence

State PUBLISHED

Description

The Backuply – Backup, Restore, Migrate and Clone plugin for WordPress is vulnerable to Directory Traversal in all versions up to, and including, 1.2.3 via the node_id parameter in the backuply_get_jstree function. This makes it possible for attackers with administrator privileges or higher to read the contents of arbitrary files on the server, which can contain sensitive information.

← Browse all CVEs View on cve.org ↗