all InfoSec news
Critical RCE Vulnerability Patched in Backup Migration Plugin
Sucuri Blog blog.sucuri.net
On December 6th, 2023, the WordPress plugin Backup Migration received a critical security patch for a remote code execution vulnerability. Details were released five days later after users were given an opportunity to install the patch, although the official CVE is still locked down in “reserved” mode.
Website administrators are advised to update to the most recent version 1.3.8 which contains several crucial security improvements. The vulnerability is ranked as 9.8 on the CVSS scale, so it’s about as bad …
administrators backup code code execution critical cve december down install locked migration mode official opportunity patch plugin rce remote code remote code execution security security advisory security patch vulnerability website wordpress wordpress plugin wordpress plugins and themes wordpress security