cve,link,title,description,vendor,products,score,severity,epss,cisa,cisa_published,article,ransomware,exploited,poc,trended,trended_no_1,published,trended_score
CVE-2022-4932,https://securityvulnerability.io/vulnerability/CVE-2022-4932,Information Disclosure Vulnerability in Total Upkeep Plugin for WordPress,"The Total Upkeep plugin for WordPress is susceptible to an information disclosure vulnerability that allows authenticated attackers, with subscriber-level permissions or higher, to access sensitive backup paths. This issue arises from insufficient authorization in the heartbeat_received() function, triggered by WordPress heartbeats. Exploiting this vulnerability could enable attackers to download critical backup files, potentially compromising the integrity and confidentiality of the site's data.",Wordpress,Total Upkeep – WordPress Backup Plugin Plus Restore & Migrate By Boldgrid,4.3,MEDIUM,0.0005000000237487257,false,,false,false,false,,false,false,2023-03-07T14:47:47.177Z,0