HTTP: WordPress All-in-One WP Migration Plugin Backups Directory Traversal
This signature detects attempts to exploit a known vulnerability against WordPress All-in-One WP Migration Plugin Backups. A successful attack can lead to directory traversal and arbitrary code execution.
Extended Description
The All-in-One WP Migration plugin for WordPress is vulnerable to arbitrary file deletion via directory traversal due to insufficient file validation via the ~/lib/model/class-ai1wm-backups.php file, in versions up to, and including, 7.58. This can be exploited by administrative users, and users who have access to the site's secret key.
Affected Products
Servmask all-in-one_wp_migration
References
CVE: CVE-2022-2863
URL: https://www.wordfence.com/vulnerability-advisories/#CVE-2022-1476 https://plugins.trac.wordpress.org/changeset?sfp_email=&sfph_mail=&reponame=&old=2715609%40all-in-one-wp-migration&new=2715609%40all-in-one-wp-migration&sfp_email=&sfph_mail= https://en-ca.wordpress.org/plugins/wpvivid-backuprestore/#developers https://wpscan.com/vulnerability/cb6a3304-2166-47a0-a011-4dcacaa133e5
Short Name
HTTP:DIR:WP-AIO-MIGRATION-DIR
Severity
Minor
Recommended
False
Recommended Action
Drop
Category
HTTP
Keywords
All-in-One Backups CVE-2022-0679 CVE-2022-1476 CVE-2022-2863 Directory Migration Plugin Traversal WP WordPress
Release Date
05/30/2022
Supported Platforms
srx-branch-12.3
srx-19.3
srx-branch-19.3
vsrx3bsd-19.2
srx-branch-19.4
vsrx-19.4
mx-12.3
mx-19.4
vmx-19.4
mx-19.3
vsrx3bsd-19.4
srx-19.4
vsrx-12.3
vmx-19.3
vsrx-19.2
srx-12.3
Sigpack Version
3590
False Positive
Unknown
Vendors
Servmask
CVSS Score
5.5