CVE-2023-6750

CVSS 3.1 Score 7.5 of 10 (high)

Details

Published Jan 8, 2024
Updated: Jan 11, 2024

Summary

CVE-2023-6750 is a vulnerability affecting the Clone WordPress plugin before version 2.4.3. This issue arises due to the use of buffer files to store in-progress backup information. The problem lies in the static file path where these buffer files are stored, making them publicly accessible. An attacker could potentially exploit this vulnerability to gain sensitive information or perform unauthorized actions on the affected WordPress site. It is recommended that users update to the latest version of the plugin to mitigate this risk.

Ligh bulbPrevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Share