CVE-2006-4208
published 2006-08-17CVE-2006-4208: Directory traversal vulnerability in wp-db-backup.php in Skippy WP-DB-Backup plugin for WordPress 1.7 and earlier allows remote authenticated users with…
PriorityP333medium5CVSS 2.0
AVNACLAuNCPINAN
EXPLOIT
EPSS
11.81%
95.6th percentile
Directory traversal vulnerability in wp-db-backup.php in Skippy WP-DB-Backup plugin for WordPress 1.7 and earlier allows remote authenticated users with administrative privileges to read arbitrary files via a .. (dot dot) in the backup parameter to edit.php.
Affected
7 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| debian | wordpress | < wordpress 2.0.5-0.1 (bookworm) | wordpress 2.0.5-0.1 (bookworm) |
| skippy.net | wp-db_backup_plugin_for_wordpress | — | — |
| skippy.net | wp-db_backup_plugin_for_wordpress | — | — |
| wordpress | wordpress | >= 0 < 2.0.5-0.1 | 2.0.5-0.1 |
| wordpress | wordpress | >= 0 < 2.0.5-0.1 | 2.0.5-0.1 |
| wordpress | wordpress | >= 0 < 2.0.5-0.1 | 2.0.5-0.1 |
| wordpress | wordpress | >= 0 < 2.0.5-0.1 | 2.0.5-0.1 |
CVSS provenance
nvdv2.05.0MEDIUMAV:N/AC:L/Au:N/C:P/I:N/A:N
osv5.0MEDIUM
vendor_debian5.0LOW
CVEs like this are exactly what “Exploited This Week” covers.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
GHSA
GHSA-86h8-mw8r-2c75: Directory traversal vulnerability in wp-db-backup
ghsa_unreviewed·2022-05-01
CVE-2006-4208 [MEDIUM] GHSA-86h8-mw8r-2c75: Directory traversal vulnerability in wp-db-backup
Directory traversal vulnerability in wp-db-backup.php in Skippy WP-DB-Backup plugin for WordPress 1.7 and earlier allows remote authenticated users with administrative privileges to read arbitrary files via a .. (dot dot) in the backup parameter to edit.php.
OSV
CVE-2006-4208: Directory traversal vulnerability in wp-db-backup
osv·2006-08-17·CVSS 5.0
CVE-2006-4208 [MEDIUM] CVE-2006-4208: Directory traversal vulnerability in wp-db-backup
Directory traversal vulnerability in wp-db-backup.php in Skippy WP-DB-Backup plugin for WordPress 1.7 and earlier allows remote authenticated users with administrative privileges to read arbitrary files via a .. (dot dot) in the backup parameter to edit.php.
Debian
CVE-2006-4208: wordpress - Directory traversal vulnerability in wp-db-backup.php in Skippy WP-DB-Backup plu...
vendor_debian·2006·CVSS 5.0
CVE-2006-4208 [MEDIUM] CVE-2006-4208: wordpress - Directory traversal vulnerability in wp-db-backup.php in Skippy WP-DB-Backup plu...
Directory traversal vulnerability in wp-db-backup.php in Skippy WP-DB-Backup plugin for WordPress 1.7 and earlier allows remote authenticated users with administrative privileges to read arbitrary files via a .. (dot dot) in the backup parameter to edit.php.
Scope: local
bookworm: resolved (fixed in 2.0.5-0.1)
bullseye: resolved (fixed in 2.0.5-0.1)
forky: resolved (fixed in 2.0.5-0.1)
sid: resolved (fixed in 2.0.5-0.1)
trixie: resolved (fixed in 2.0.5-0.1)
No detection rules found.
No writeups or analysis indexed.
http://secunia.com/advisories/21486http://securityreason.com/securityalert/1401http://trac.wordpress.org/changeset/4095http://www.securityfocus.com/archive/1/443181/100/0/threadedhttp://www.securityfocus.com/bid/19504http://www.skippy.net/blog/category/wordpress/plugins/wp-db-backup/http://www.vupen.com/english/advisories/2006/3280https://exchange.xforce.ibmcloud.com/vulnerabilities/28375http://secunia.com/advisories/21486http://securityreason.com/securityalert/1401http://trac.wordpress.org/changeset/4095http://www.securityfocus.com/archive/1/443181/100/0/threadedhttp://www.securityfocus.com/bid/19504http://www.skippy.net/blog/category/wordpress/plugins/wp-db-backup/http://www.vupen.com/english/advisories/2006/3280https://exchange.xforce.ibmcloud.com/vulnerabilities/28375
2006-08-17
Published