WordPress Plugin Vulnerabilities

XCloner - Backup and Restore 3.1.2 - XSS & Command Execution

Description

The Backup, Restore and Migrate WordPress Sites With the XCloner Plugin WordPress plugin was affected by a Backup and Restore 3.1.2 - XSS & Command Execution security vulnerability.

Affects Plugins

Plugin icon
xcloner-backup-and-restore
Fixed in 3.1.3

References

CVE
CVE-2015-4336
CVE
CVE-2015-4337
CVE
CVE-2015-4338
URL
https://packetstormsecurity.com/files/#132107/
URL
https://seclists.org/bugtraq/2015/Jun/33

Miscellaneous

Submitter
pvdl
Verified
No
WPVDB ID
1de1be15-64ba-412f-ad89-2cb622977763

Timeline

Publicly Published
2015-05-10 (about 11 years ago)
Added
2015-06-02 (about 10 years ago)
Last Updated
2020-09-25 (about 5 years ago)

Other

Published
Title
Published
2019-05-31
Title
Zoho SalesIQ <= 1.0.8 - XSS & CSRF
Published
2016-09-27
Title
Google Document Embedder < 2.6.2 - CSRF & XSS
Published
2019-07-08
Title
WP Google Maps <= 7.11.34 - CSRF to Stored XSS
Published
2015-09-26
Title
Appointment Booking Calendar < 1.1.8 - Multiple Reflected Cross-Site Scripting (XSS) and SQL Injection
Published
2019-09-08
Title
Photo Gallery by 10Web < 1.5.35 - SQL Injection & XSS