ThreatPress

WordPress Vulnerabilities Database

Back

WordPress XCloner Plugin - Multiple Vulnerabilities

Product
XCloner
Description
XCloner plugin is prone to multiple vulnerabilities, such as: unauthenticated remote access to backup files via easily guessable file names, arbitrary command execution and authenticated remote file access. Also, clear text MySQL password exposure through HTML text box.
Solution
Upgrade the plugin.
Classification
Type Multi
References
Exploit-DB
CVE
Name CVE-2014-8603
Versions
Affected In <= 1.0
Fixed In 1.1
Disclosure date
2014-11-10
Credits
Larry W. Cashdollar