CVE-2022-0833

Name of the Vulnerable Software and Affected Versions Church Admin WordPress plugin versions prior to 3.4.135

Description The issue allows unauthenticated attackers to exploit the lack of authorization and CSRF protection in certain actions and requested files. This enables them to repeatedly request the "refresh-backup" action and simultaneously access a publicly accessible temporary file generated by the plugin, ultimately disclosing the final backup filename. The attacker can then fetch this filename to download the backup of the plugin's database data.

Recommendations For versions prior to 3.4.135, update to version 3.4.135 or later to resolve the issue. As a temporary workaround, consider restricting access to the plugin's actions and requested files to prevent unauthorized requests.