CVE-2020-36848 – BoldGrid WordPress Backup Plugin Sensitive Information Exposure

CVE ID : CVE-2020-36848

Published : July 12, 2025, 12:15 p.m. | 2 hours, 3 minutes ago

Description : The Total Upkeep – WordPress Backup Plugin plus Restore & Migrate by BoldGrid plugin for WordPress is vulnerable to Sensitive Information Exposure in all versions up to, and including, 1.14.9 via the env-info.php and restore-info.json files. This makes it possible for unauthenticated attackers to find the location of back-up files and subsequently download them.

Severity: 7.5 | HIGH

Visit the link for more details, such as CVSS details, affected products, timeline, and more…