CVE-2023-6971: 
WordPress vulnerability analysis and mitigation

The Backup Migration plugin for WordPress contains a Remote File Inclusion vulnerability (CVE-2023-6971) affecting versions 1.0.8 to 1.3.9. The vulnerability was discovered by Hiroho Shimada and disclosed on December 22, 2023. This security flaw exists in the plugin's handling of the 'content-dir' HTTP header (NVD).

The vulnerability allows for Remote File Inclusion through the 'content-dir' HTTP header. The severity of this vulnerability is rated as Critical with a CVSS v3.1 base score of 9.8 (CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H) according to NIST, while Wordfence rates it with a score of 8.1 (CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H). Exploitation requires the target server's php.ini to be configured with 'allow_url_include' set to 'on', a feature that is deprecated as of PHP 7.4 and disabled by default (NVD).

When successfully exploited, this vulnerability enables unauthenticated attackers to include remote files on the server, potentially leading to remote code execution. The impact is particularly severe as it requires no authentication and can result in complete system compromise (NVD).

A patch has been released to address this vulnerability. Users should update their Backup Migration plugin to version 1.4.0 or later to protect against this security flaw (Wordfence Intel).