HIGH🇵🇱 Wersja polska

CVE-2024-0842

CVSS 7.5v3.1pub. 2024-02-09upd. 2026-04-08

The Backuply – Backup, Restore, Migrate and Clone plugin for WordPress is vulnerable to Denial of Service in all versions up to, and including, 1.2.6. This is due to direct access of the backuply/restore_ins.php file and. This makes it possible for unauthenticated attackers to make excessive requests that result in the server running out of resources.

CVSS Vector
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
  • Softaculous Backuply

    APP
    Softaculous
    < 1.2.6
🔵
CHECK WITH VENDOR
No clear patch data available. Check vendor references.
Tags
Auth BypassDoS
CWE
References

Related vulnerabilities

CVE-2024-8669CRITICAL9.1PL ✓ten sam produkt

SQL Injection w pluginie WordPress Backuply (do wersji 1.3.4)

CVE-2024-0697MEDIUM6.5ten sam produkt

The Backuply – Backup, Restore, Migrate and Clone plugin for WordPress is vulnerable to Directory Traversal in...

CVE-2024-24621CRITICAL9.8PL ✓ten sam vendor

Softaculous Webuzo — pominięcie uwierzytelnienia przez reset hasła

CVE-2017-6513CRITICAL9.9ten sam vendor

The WHMCS Reseller Module V2 2.0.2 in Softaculous Virtualizor before 2.9.1.0 does not verify the user correctl...

CVE-2024-24622HIGH8.8ten sam vendor

Softaculous Webuzo contains a command injection in the password reset functionality. A remote, authenticated a...