Description
The Everest Backup WordPress plugin before 2.2.5 does not properly validate backup files to be uploaded, allowing high privilege users such as admin to upload arbitrary files on the server even when they should not be allowed to (for example in multisite setup)
INFO
Published Date :
2024-04-15T05:00:01.572Z
Last Modified :
2024-08-09T20:01:33.240Z
Source :
WPScan
AFFECTED PRODUCTS
The following products are affected by CVE-2023-7201 vulnerability.
| Vendors | Products |
|---|---|
| Everestthemes |
|
REFERENCES
Here, you will find a curated list of external links that provide in-depth information to CVE-2023-7201.
CVSS Vulnerability Scoring System
Detailed values of each vector for above chart.
Attack Vector
Attack Complexity
Privileges Required
User Interaction
Scope
Confidentiality Impact
Integrity Impact
Availability Impact