Description
WordPress Plugin UpdraftPlus WordPress Backup is prone to a privilege escalation vulnerability. Exploiting this issue may allow attackers to bypass the expected capabilities check and perform otherwise restricted actions; other attacks are also possible. WordPress Plugin UpdraftPlus WordPress Backup versions from 1.22.14 and up to 1.23.2 are vulnerable.
Remediation
Update to plugin version 1.23.3 or latest
References
Related Vulnerabilities
WordPress Plugin Cache-Control Unspecified Vulnerability (2.2.3)
MediaWiki Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2021-46148)
MySQL CVE-2017-10279 Vulnerability (CVE-2017-10279)
Jetty Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2021-28169)