The Backup Migration plugin for WordPress is vulnerable to Remote File Inclusion in versions 1.0.8 to 1.3.9 via the 'content-dir' HTTP header. This makes it possible for unauthenticated attackers to include remote files on the server, resulting in code execution. NOTE: Successful exploitation of this vulnerability requires that the target server's php.ini is configured with 'allow_url_include' set to 'on'. This feature is deprecated as of PHP 7.4 and is disabled by default, but can still be explicitly enabled in later versions of PHP.
References
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: Wordfence
Published: 2023-12-23T01:59:49.340Z
Updated: 2023-12-23T01:59:49.340Z
Reserved: 2023-12-19T22:32:50.041Z
Link: CVE-2023-6971
JSON object: View
NVD Information
Status : Analyzed
Published: 2023-12-23T02:15:45.150
Modified: 2023-12-29T06:21:25.760
Link: CVE-2023-6971
JSON object: View
Redhat Information
No data.
CWE