CVE-2023-7164 Information

Description

The BackWPup WordPress plugin before 4.0.4 does not prevent visitors from leaking key information about ongoing backups allowing unauthenticated attackers to download backups of a site’s database.

Reference

https://wpscan.com/vulnerability/79b07f37-2c6b-4846-bb28-91a1e5bf112e/