CVE-2023-5504: 
WordPress vulnerability analysis and mitigation

The BackWPup plugin for WordPress (versions up to 4.0.1) contains a Directory Traversal vulnerability (CVE-2023-5504) that affects the Log File Folder functionality. This vulnerability was discovered and reported by Wordfence, with the initial disclosure on October 10, 2023 (CVE MITRE, NVD).

The vulnerability is classified as a Directory Traversal issue (CWE-22) with a CVSS v3.1 base score of 8.7 (HIGH), and vector string CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:C/C:N/I:H/A:H. The flaw allows authenticated attackers to manipulate the Log File Folder path to store backups in arbitrary folders on the server, provided they have write permissions (NVD).

When exploited, this vulnerability can lead to two significant impacts: 1) Attackers can store backup files in arbitrary folders on the server that have write permissions, and 2) Due to default settings placing index.php and .htaccess files in the chosen directory, attackers could potentially disable other sites in a shared hosting environment by targeting their root directories (CVE MITRE).

Users should update their BackWPup plugin to a version newer than 4.0.1 to address this vulnerability. The fix has been implemented in subsequent versions as evidenced by the patch commit (WordPress Plugin).