CVE-2024-3546

Name of the Vulnerable Software and Affected Versions WordPress Backup & Migration plugin versions up to, and including, 1.4.8

Description The issue allows authenticated attackers with subscriber access or above to access log files maintained by the plugin due to a missing capability check on the wp mgdp populate popup function. The file name is user-provided and not properly sanitized, enabling attackers to read arbitrary log files on the file system.

Recommendations For WordPress Backup & Migration plugin versions up to, and including, 1.4.8, update to a version higher than 1.4.8 to resolve the issue. As a temporary workaround, consider restricting access to the wp mgdp populate popup function until a patch is available.