Wp-staging Wp_staging
6 CVEs affecting Wp-staging Wp_staging. Latest disclosed: 2024-06-14. Critical: 0, High: 4.
| CVE | Severity | Score | Published | Summary |
|---|---|---|---|---|
CVE-2024-5551 | High | 7.5 | 2024-06-14 | The WP STAGING Pro WordPress Backup Plugin plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to, and including, 5.6.0. This i… |
CVE-2024-4469 | High | 7.5 | 2024-05-31 | The WP STAGING WordPress Backup Plugin WordPress plugin before 3.5.0 does not prevent users with the administrator role from pinging conducting SSRF attacks… |
CVE-2023-7204 | High | 7.5 | 2024-01-29 | The WP STAGING WordPress Backup plugin before 3.2.0 allows access to cache files during the cloning process which provides |
CVE-2023-6113 | High | 7.5 | 2024-01-01 | The WP STAGING WordPress Backup Plugin before 3.1.3 and WP STAGING Pro WordPress Backup Plugin before 5.1.3 do not prevent visitors from leaking key informatio… |
CVE-2024-2309 | Medium | 4.8 | 2024-04-17 | The WP STAGING WordPress Backup Plugin WordPress plugin before 3.4.0, wp-staging-pro WordPress plugin before 5.4.0 does not sanitise and escape some of its se… |
CVE-2022-2737 | Medium | 4.8 | 2022-09-16 | The WP STAGING WordPress plugin before 2.9.18 does not sanitise and escape some of its settings, which could allow high privilege users such as admin to perfor… |