{"containers":{"cna":{"affected":[{"product":"WordPress project source code download","vendor":"Unknown","versions":[{"lessThanOrEqual":"1.0.0","status":"affected","version":"1.0.0","versionType":"custom"}]}],"credits":[{"lang":"en","value":"Daniel Ruf"}],"descriptions":[{"lang":"en","value":"The Project Source Code Download WordPress plugin through 1.0.0 does not protect its backup generation and download functionalities, which may allow any visitors on the site to download the entire site, including sensitive files like wp-config.php."}],"problemTypes":[{"descriptions":[{"cweId":"CWE-552","description":"CWE-552 Files or Directories Accessible to External Parties","lang":"en","type":"CWE"}]}],"providerMetadata":{"dateUpdated":"2022-08-01T12:48:01.000Z","orgId":"1bfdd5d7-9bf6-4a53-96ea-42e2716d7a81","shortName":"WPScan"},"references":[{"tags":["x_refsource_MISC"],"url":"https://wpscan.com/vulnerability/e709958c-7bce-45d7-9a0a-6e0ed12cd03f"}],"source":{"discovery":"EXTERNAL"},"title":"Project Source Code Download <= 1.0.0 - Unauthenticated Backup Download","x_generator":"WPScan CVE Generator","x_legacyV4Record":{"CVE_data_meta":{"ASSIGNER":"contact@wpscan.com","ID":"CVE-2022-1585","STATE":"PUBLIC","TITLE":"Project Source Code Download <= 1.0.0 - Unauthenticated Backup Download"},"affects":{"vendor":{"vendor_data":[{"product":{"product_data":[{"product_name":"WordPress project source code download","version":{"version_data":[{"version_affected":"<=","version_name":"1.0.0","version_value":"1.0.0"}]}}]},"vendor_name":"Unknown"}]}},"credit":[{"lang":"eng","value":"Daniel Ruf"}],"data_format":"MITRE","data_type":"CVE","data_version":"4.0","description":{"description_data":[{"lang":"eng","value":"The Project Source Code Download WordPress plugin through 1.0.0 does not protect its backup generation and download functionalities, which may allow any visitors on the site to download the entire site, including sensitive files like wp-config.php."}]},"generator":"WPScan CVE Generator","problemtype":{"problemtype_data":[{"description":[{"lang":"eng","value":"CWE-552 Files or Directories Accessible to External Parties"}]}]},"references":{"reference_data":[{"name":"https://wpscan.com/vulnerability/e709958c-7bce-45d7-9a0a-6e0ed12cd03f","refsource":"MISC","url":"https://wpscan.com/vulnerability/e709958c-7bce-45d7-9a0a-6e0ed12cd03f"}]},"source":{"discovery":"EXTERNAL"}}},"adp":[{"providerMetadata":{"orgId":"af854a3a-2127-422b-91ae-364da2661108","shortName":"CVE","dateUpdated":"2024-08-03T00:10:03.753Z"},"title":"CVE Program Container","references":[{"tags":["x_refsource_MISC","x_transferred"],"url":"https://wpscan.com/vulnerability/e709958c-7bce-45d7-9a0a-6e0ed12cd03f"}]}]},"cveMetadata":{"assignerOrgId":"1bfdd5d7-9bf6-4a53-96ea-42e2716d7a81","assignerShortName":"WPScan","cveId":"CVE-2022-1585","datePublished":"2022-08-01T12:48:01.000Z","dateReserved":"2022-05-04T00:00:00.000Z","dateUpdated":"2024-08-03T00:10:03.753Z","state":"PUBLISHED"},"dataType":"CVE_RECORD","dataVersion":"5.1"}