Backup-Guard Backup Guard vulnerabilities
3 known vulnerabilities affecting backup-guard/backup_guard.
Total CVEs
3
CISA KEV
0
Public exploits
1
Exploited in wild
0
Severity breakdown
HIGH1MEDIUM2
Vulnerabilities
Page 1 of 1
CVE-2021-24155P2HIGHCVSS 7.2PoCfixed in 1.6.02021-04-05
CVE-2021-24155 [HIGH] CWE-434 CVE-2021-24155: The WordPress Backup and Migrate Plugin – Backup Guard WordPress plugin before 1.6.0 did not ensure
The WordPress Backup and Migrate Plugin – Backup Guard WordPress plugin before 1.6.0 did not ensure that the imported files are of the SGBP format and extension, allowing high privilege users (admin+) to upload arbitrary files, including PHP ones, leading to RCE.
nvd
CVE-2017-10837P4MEDIUMCVSS 6.1≤ 1.1.462017-08-29
CVE-2017-10837 [MEDIUM] CWE-79 CVE-2017-10837: Cross-site scripting vulnerability in BackupGuard prior to version 1.1.47 allows an attacker to inje
Cross-site scripting vulnerability in BackupGuard prior to version 1.1.47 allows an attacker to inject arbitrary web script or HTML via unspecified vectors.
nvd
CVE-2017-18488P4MEDIUMCVSS 6.1fixed in 1.1.472019-08-13
CVE-2017-18488 [MEDIUM] CWE-79 CVE-2017-18488: The Backup Guard plugin before 1.1.47 for WordPress has multiple XSS issues.
The Backup Guard plugin before 1.1.47 for WordPress has multiple XSS issues.
nvd