ThreatPress

WordPress Vulnerability Database

Back

WordPress Total Upkeep plugin <= 1.14.9 - Unauthenticated Backup Archive Download vulnerability

Product
Total Upkeep
Description
Unauthenticated Backup Archive Download vulnerability found by Wadeek in WordPress Total Upkeep plugin (versions <= 1.14.9).
Solution
Update the WordPress Total Upkeep plugin to the latest available version (at least 1.14.10).
Classification
Type Information Disclosure
OWASP Top 10 A6: Sensitive Data Exposure
References
Plugin changelog
Vulnerability details
CVE
Name CVE-N/A
Versions
Affected In <= 1.14.9
Fixed In 1.14.10
Disclosure date
2020-12-15
Credits
Wadeek