CVE-2025-11759
- EPSS 0.01%
- Veröffentlicht 05.12.2025 01:55:21
- Zuletzt bearbeitet 08.12.2025 18:27:15
The Backup, Restore and Migrate your sites with XCloner plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to, and including, 4.8.2. This is due to missing or incorrect nonce validation on the Xcloner_Remote_Storage:s...
CVE-2024-6559
- EPSS 0.49%
- Veröffentlicht 16.07.2024 07:15:02
- Zuletzt bearbeitet 21.11.2024 09:49:53
The Backup, Restore and Migrate WordPress Sites With the XCloner Plugin plugin for WordPress is vulnerable to Full Path Disclosure in all versions up to, and including, 4.7.3. This is due the plugin utilizing sabre without preventing direct access to...
CVE-2022-0444
- EPSS 0.07%
- Veröffentlicht 27.06.2022 09:15:08
- Zuletzt bearbeitet 21.11.2024 06:38:38
The Backup, Restore and Migrate WordPress Sites With the XCloner Plugin WordPress plugin before 4.3.6 does not have authorisation and CSRF checks when resetting its settings, allowing unauthenticated attackers to reset them, including generating a ne...