CVE-2023-54346

Name of the Vulnerable Software and Affected Versions Backup Migration version 1.2.8

Description An information disclosure issue allows unauthenticated attackers to download complete database backups by accessing predictable file paths. Attackers can enumerate backup directories via configuration files and complete logs to construct direct download URLs and retrieve sensitive backup archives containing full database dumps.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.