CVE-2014-8605

XCloner 3.1.1 and 3.5.1 - Unauthenticated Sensitive Information Exposure via Predictable Backup File Names

Title source: llm
STIX 2.1

Exploitation Summary

EIP tracks 1 public exploit for CVE-2014-8605.

AI-analyzed exploit summary This is a detailed technical analysis of multiple vulnerabilities in XCloner WordPress/Joomla! backup plugin, including arbitrary command execution via unsanitized input in exec() calls, cleartext MySQL password exposure, and predictable backup file names. The advisory includes vulnerable code snippets and proof-of-concept descriptions.

Description

The XCloner plugin 3.1.1 for WordPress and 3.5.1 for Joomla! stores database backup files with predictable names under the web root with insufficient access control, which allows remote attackers to obtain sensitive information via a direct request to a backup file in administrators/backups/.

Exploits (1)

exploitdb WRITEUP
webappsphp
https://www.exploit-db.com/exploits/35212

This is a detailed technical analysis of multiple vulnerabilities in XCloner WordPress/Joomla! backup plugin, including arbitrary command execution via unsanitized input in exec() calls, cleartext MySQL password exposure, and predictable backup file names. The advisory includes vulnerable code snippets and proof-of-concept descriptions.

Classification
Writeup 95%
Attack Type
Rce | Info Leak
Complexity
Moderate
Reliability
Reliable
Target: XCloner WordPress/Joomla! backup plugin v3.1.1 (WordPress) v3.5.1 (Joomla!)
Auth required
Prerequisites: Administrative access to the plugin · Ability to configure backup settings
devstral-2 · analyzed Feb 19, 2026 Full analysis →

References (2)

Core 2

Scores

EPSS 0.0712
EPSS Percentile 93.4%

Details

CWE
CWE-264
Status published
Products (2)
xcloner/xcloner 3.1.1
xcloner/xcloner 3.5.1
Published Jun 10, 2015
Tracked Since Feb 18, 2026