CVE-2016-20076

WordPress Simple-Backup 2.7.11 Arbitrary File Deletion and Download

CVSS 8.7 HIGHEPSS 0.6%CWE-22

WordPress Simple-Backup 2.7.11 contains multiple vulnerabilities that allow unauthenticated attackers to delete arbitrary files and download sensitive files by manipulating the delete_backup_file and download_backup_file parameters in tools.php. Attackers can exploit insufficient input validation using directory traversal techniques to access wp-config.php, database dumps, and other sensitive files, or delete critical files .htaccess to expose backup directories.

CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N

Affected products

ChrisHurst · Simple Backup

public PoCs found — 1

cve_referencewww.exploit-db.com/exploits/39883unverified

⚠ Public resources, to assess the exposure of systems you control or are authorized to test. Test only with authorization.

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →

References

https://www.exploit-db.com/exploits/39883 https://www.vulncheck.com/advisories/wordpress-simple-backup-arbitrary-file-deletion-and-download