Vulnerabilities (CVE)

Filtered by vendor 1clickmigration Subscribe
Filtered by product 1 Click Migration
Total 1 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2024-13609 1 1clickmigration 1 1 Click Migration 2025-02-21 N/A 5.9 MEDIUM
The 1 Click WordPress Migration Plugin – 100% FREE for a limited time plugin for WordPress is vulnerable to Sensitive Information Exposure in all versions up to, and including, 2.1 via the class-ocm-backup.php. This makes it possible for unauthenticated attackers to extract sensitive data including usernames and their respective password hashes during a short window of time in which the backup is in process.