CVE-2022-31474

Published on: Not Yet Published

Last Modified on: 03/16/2023 08:05:00 PM UTC

CVE-2022-31474

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

Certain versions of Backupbuddy from Ithemes contain the following vulnerability:

Directory Traversal vulnerability in iThemes BackupBuddy plugin 8.5.8.0 - 8.7.4.1 versions.

CVE-2022-31474 has been assigned by audit@patchstack.com to track the vulnerability - currently rated as HIGH severity.
Affected Vendor/Software: iThemes - BackupBuddy version not down converted

CVSS3 Score: 7.5 - HIGH

Attack Vector ^ⓘ	Attack Complexity	Privileges Required	User Interaction
NETWORK	LOW	NONE	NONE
Scope	Confidentiality Impact	Integrity Impact	Availability Impact
UNCHANGED	HIGH	NONE	NONE

CVE References

Description	Tags ^ⓘ	Link
WordPress Backup Buddy plugin 8.5.8.0 - 8.7.4.1 - Unauthenticated Path Traversal / Arbitrary File Download vulnerability - Patchstack	patchstack.com text/html	MISC patchstack.com/database/vulnerability/backupbuddy/wordpress-backup-buddy-plugin-8-5-8-0-8-7-4-1-unauthenticated-path-traversal-arbitrary-file-download-vulnerability?_s_id=cve
WordPress Vulnerability Report, Special Edition – September 6, 2022: BackupBuddy	ithemes.com text/html	MISC ithemes.com/blog/wordpress-vulnerability-report-special-edition-september-6-2022-backupbuddy/

By selecting these links, you may be leaving CVEreport webspace. We have provided these links to other websites because they may have information that would be of interest to you. No inferences should be drawn on account of other sites being referenced, or not, from this page. There may be other websites that are more appropriate for your purpose. CVEreport does not necessarily endorse the views expressed, or concur with the facts presented on these sites. Further, CVEreport does not endorse any commercial products that may be mentioned on these sites. Please address comments about any linked pages to [email protected].

Related QID Numbers

150570 WordPress BackupBuddy Plugin: Arbitrary File Read Vulnerability (CVE-2022-31474)
730611 WordPress BackupBuddy Plugin Arbitrary File Read Vulnerability

Exploit/POC from Github

New #WordPress #0Day #BackupBuddy Plugin #LFI

Known Affected Configurations (CPE V2.3)

Type	Vendor	Product	Version	Update	Edition	Language
Application	Ithemes	Backupbuddy	All	All	All	All

cpe:2.3:a:ithemes:backupbuddy:*:*:*:*:*:wordpress:*:*:

No vendor comments have been submitted for this CVE

Social Mentions

Source	Title	Posted (UTC)
@inj3ct0r	#0day #WordPress #BackupBuddy 8.7.4.1 Arbitrary File Read #Vulnerability #CVE-2022-31474 0day.today/exploit/descri…	2022-09-08 09:56:50
@the_yellow_fall	CVE-2022-31474: 0-day WordPress BackupBuddy plugin affects 140,000 websites securityonline.info/cve-2022-31474… #opensource… twitter.com/i/web/status/1…	2022-09-09 10:03:25
@AcooEdi	CVE-2022-31474: 0-day WordPress BackupBuddy plugin affects 140,000 websites dlvr.it/SY2DqL via securityonl… twitter.com/i/web/status/1…	2022-09-09 10:10:09
@Komodosec	#Vulnerability #BackupBuddy CVE-2022-31474: 0-day WordPress BackupBuddy plugin affects 140,000 websites securityonline.info/cve-2022-31474…	2022-09-09 10:58:02
@CovertSwarm	Critical vulnerability identified in WordPress plugin "BackupBuddy": (CVE-2022-31474) #vulnerability #wordpress… twitter.com/i/web/status/1…	2022-09-09 12:22:25
@securestep9	#WordPress - Attackers Exploit Zero-Day Arbitrary File Download Vulnerability (CVE-2022-31474) in WordPress… twitter.com/i/web/status/1…	2022-09-09 18:43:03
@Ahmedkaissar2	CVE-2022-31474, CVSS score: 7.5 هلا والله بالمولد الجديد ?? هناك Zero day علي plugin مشهوره يتم استخدامها في مواقع… twitter.com/i/web/status/1…	2022-09-09 23:54:33
@PentestingN	CVE-2022-31474: 0-day WordPress BackupBuddy plugin affects 140,000 websites securityonline.info/cve-2022-31474… Penetration T… twitter.com/i/web/status/1…	2022-09-10 06:13:58
@inthewildio	CVE-2022-31474 is getting exploited #inthewild. Find out more at inthewild.io/vuln/CVE-2022-… CVE-2021-3493 is getting e… twitter.com/i/web/status/1…	2022-09-11 16:10:32
@pdnuclei	Scanning for - CVE-2022-31474: 0-day WordPress BackupBuddy plugin affects 140,000 websites via @TheHackersNews usin… twitter.com/i/web/status/1…	2022-09-13 13:19:54
@ReconOne_bk	[Oh noo] New 0-Day affecting WordPress exploited in the wild ? WordPress BackupBuddy Plugin LFI (CVE-2022-31474)… twitter.com/i/web/status/1…	2022-09-13 13:59:26
@0xrobiul	New #WordPress #0Day #BackupBuddy Plugin #LFI #CVE-2022-31474 At A Scale! #BugBounty #BugBountyTips #CyberSecurity… twitter.com/i/web/status/1…	2022-09-13 16:42:52
@0xMaruf	[Oh noo] New 0-Day affecting WordPress exploited in the wild ? WordPress BackupBuddy Plugin LFI (CVE-2022-31474)… twitter.com/i/web/status/1…	2022-09-13 17:19:56
@i4interactive	Top #WordPress story: Add CVE-2022-31474.yaml by aringo · Pull Request #5342 · projectdiscovery/nuclei-templates ·… twitter.com/i/web/status/1…	2022-09-14 02:57:13
@ipssignatures	The vuln CVE-2022-31474 has a tweet created 0 days ago and retweeted 13 times. twitter.com/shaybt12/statu… #pow1rtrtwwcve	2022-09-14 06:06:00
@ipssignatures	The vuln CVE-2022-31474 has a tweet created 0 days ago and retweeted 104 times. twitter.com/pdnuclei/statu… #pow2rtrtwwcve	2022-09-14 08:06:00
@AffanJau	@abdulx01t @shaybt12 not WordPress it's the plugin. more info: securityonline.info/cve-2022-31474…	2022-09-14 11:34:40
@milanshiftsec	CVE-2022-31474 - BackupBuddy LFI POC: /wp-admin/admin-post.php?page=pb_backupbuddy_destinations&local-destination-i… twitter.com/i/web/status/1…	2022-09-14 13:33:55
@Har_sia	CVE-2022-31474 har-sia.info/CVE-2022-31474… #HarsiaInfo	2022-09-14 15:02:27
@ipssignatures	The vuln CVE-2022-31474 has a tweet created 0 days ago and retweeted 108 times. twitter.com/shaybt12/statu… #pow2rtrtwwcve	2022-09-14 18:06:00
@ipssignatures	The vuln CVE-2022-31474 has a tweet created 1 days ago and retweeted 10 times. twitter.com/0xMaruf/status… #pow1rtrtwwcve	2022-09-15 02:06:01
@NandanLohitaksh	CVE-2022-31474 in scale cat hosts \|httpx -title -path "/wp-admin/admin-post.php?page=pb_backupbuddy_destinations&… twitter.com/i/web/status/1…	2022-09-15 16:14:05
@0xrobiul	New #WordPress #0Day #BackupBuddy Plugin #LFI #CVE-2022-31474 At A Scale! #BugBounty #BugBountyTips #CyberSecurity… twitter.com/i/web/status/1…	2022-09-16 04:53:01
@forgedhallpass	@0xrobiul There's also a nuclei template: github.com/projectdiscove…	2022-09-16 10:22:07
@certbe	Warning: Two #WordPress plugins actively exploited in the wild. Upgrade #backupbuddy #CVE-2022-31474 asap and tempo… twitter.com/i/web/status/1…	2022-09-16 12:20:05
@ipssignatures	The vuln CVE-2022-31474 has a tweet created 1 days ago and retweeted 11 times. twitter.com/NandanLohitaks… #pow1rtrtwwcve	2022-09-17 00:06:00
@BiswajeetRay7	New #WordPress #0Day #BackupBuddy Plugin #LFI #CVE-2022-31474 At A Scale cat hosts \| httpx -title -path "/wp-admin/… twitter.com/i/web/status/1…	2022-09-17 11:59:10
@ipssignatures	The vuln CVE-2022-31474 has a tweet created 1 days ago and retweeted 13 times. twitter.com/0xrobiul/statu… #pow1rtrtwwcve	2022-09-17 12:06:00
@ReconOne_bk	WordPress - CVE-2022-31474 ? twitter.com/ReconOne_bk/st…	2022-10-17 11:25:28
@san28704295	[Oh noo] New 0-Day affecting WordPress exploited in the wild ? WordPress BackupBuddy Plugin LFI (CVE-2022-31474)… twitter.com/i/web/status/1…	2023-02-23 06:29:51
@CVEreport	CVE-2022-31474 : Directory Traversal vulnerability in iThemes BackupBuddy plugin 8.5.8.0 - 8.7.4.1 versions.... cve.report/CVE-2022-31474	2023-03-13 14:06:21
/r/KomodoCyberConsulting	CVE-2022-31474: 0-day WordPress BackupBuddy plugin affects 140,000 websites	2022-09-09 10:58:04
/r/netcve	CVE-2022-31474	2023-03-13 15:38:15