CVE-2023-7002
published 2023-12-23CVE-2023-7002: The Backup Migration plugin for WordPress is vulnerable to OS Command Injection in all versions up to, and including, 1.3.9 via the 'url' parameter. This…
PriorityP260high7.2CVSS 3.1
AVNACLPRHUINSUCHIHAH
EPSS
45.90%
98.7th percentile
The Backup Migration plugin for WordPress is vulnerable to OS Command Injection in all versions up to, and including, 1.3.9 via the 'url' parameter. This vulnerability allows authenticated attackers, with administrator-level permissions and above, to execute arbitrary commands on the host operating system.
Affected
2 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| backupbliss | backup_migration | < 1.4.0 | 1.4.0 |
| inisev | backupbliss_backup_migration_with_free_cloud_storage | <= 1.3.9 | — |
Stop checking back — get the weekly exploitation signal.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
VulDB
Backup Migration Plugin up to 1.3.9 on WordPress URL os command injection (ID 3012745)
vuldb·2026-04-11·CVSS 7.2
CVE-2023-7002 [HIGH] Backup Migration Plugin up to 1.3.9 on WordPress URL os command injection (ID 3012745)
A vulnerability, which was classified as critical, has been found in Backup Migration Plugin up to 1.3.9 on WordPress. The impacted element is an unknown function of the component URL Handler. This manipulation causes os command injection.
This vulnerability appears as CVE-2023-7002. The attacker needs to be present on the local network. There is no available exploit.
GHSA
GHSA-m7g9-pfq2-744h: The Backup Migration plugin for WordPress is vulnerable to OS Command Injection in all versions up to, and including, 1
ghsa_unreviewed·2023-12-23
CVE-2023-7002 [HIGH] CWE-78 GHSA-m7g9-pfq2-744h: The Backup Migration plugin for WordPress is vulnerable to OS Command Injection in all versions up to, and including, 1
The Backup Migration plugin for WordPress is vulnerable to OS Command Injection in all versions up to, and including, 1.3.9 via the 'url' parameter. This vulnerability allows authenticated attackers, with administrator-level permissions and above, to execute arbitrary commands on the host operating system.
No detection rules found.
No public exploits indexed.
No writeups or analysis indexed.
https://plugins.trac.wordpress.org/browser/backup-backup/tags/1.3.9/includes/ajax.php#L1503https://plugins.trac.wordpress.org/browser/backup-backup/tags/1.3.9/includes/ajax.php#L1518https://plugins.trac.wordpress.org/browser/backup-backup/tags/1.3.9/includes/ajax.php#L88https://plugins.trac.wordpress.org/changeset/3012745/backup-backuphttps://www.linuxquestions.org/questions/linux-security-4/php-function-exec-enabled-how-big-issue-4175508082/https://www.wordfence.com/threat-intel/vulnerabilities/id/cc49db10-988d-42bd-a9cf-9a86f4c79568?source=cvehttps://plugins.trac.wordpress.org/browser/backup-backup/tags/1.3.9/includes/ajax.php#L1503https://plugins.trac.wordpress.org/browser/backup-backup/tags/1.3.9/includes/ajax.php#L1518https://plugins.trac.wordpress.org/browser/backup-backup/tags/1.3.9/includes/ajax.php#L88https://plugins.trac.wordpress.org/changeset/3012745/backup-backuphttps://www.linuxquestions.org/questions/linux-security-4/php-function-exec-enabled-how-big-issue-4175508082/https://www.wordfence.com/threat-intel/vulnerabilities/id/cc49db10-988d-42bd-a9cf-9a86f4c79568?source=cve
2023-12-23
Published