Improper Authorization in Migrate & Backup WordPress – WPvivid Backup Plugin



Published: 2020-03-24
Risk Medium
Patch available YES
Number of vulnerabilities 1
CVE-ID N/A
CWE-ID CWE-285
Exploitation vector Network
Public exploit N/A
Vulnerable software
Subscribe
Backup WordPress Site by WPvivid
Web applications / Modules and components for CMS

Vendor wpvivid.com

Security Bulletin

This security bulletin contains one medium risk vulnerability.

1) Improper Authorization

EUVDB-ID: #VU26324

Risk: Medium

CVSSv3.1: 6.2 [CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:L/A:N/E:U/RL:O/RC:C]

CVE-ID: N/A

CWE-ID: CWE-285 - Improper Authorization

Exploit availability: No

Description

The vulnerability allows a remote attacker to bypass authorization checks.

The vulnerability exists due to missing authorization checks in the "wp_ajax_wpvivid_add_remote" AJAX action. A remote authenticated attacker can add a new remote storage location, set it as the default backup location and gain access to sensitive database information.

This vulnerability leads to CSRF issue.

Mitigation

Install updates from vendor's website.

Vulnerable software versions

Backup WordPress Site by WPvivid: 0.9.1 - 0.9.35

External links

http://wpvulndb.com/vulnerabilities/10142/
http://www.webarxsecurity.com/vulnerability-in-wpvivid-backup-plugin-can-lead-to-database-leak/


Q & A

Can this vulnerability be exploited remotely?

Yes. This vulnerability can be exploited by a remote authenticated user via the Internet.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.



###SIDEBAR###