Skip to content

Sensitive Data: WordPress DB Backup¶

Identifier: wordpress_db_backup

Scanner(s) Support¶

GraphQL Scanner	REST Scanner	WebApp Scanner	ASM Scanner

Description¶

WordPress database backup exposure allows attackers to download sensitive database files containing user data, credentials, and other confidential information.

How we test: We test for exposed WordPress database backups by attempting to access backup files and analyzing responses to detect if database files are accessible without proper authorization.

Configuration¶

Example¶

Example configuration:

---
security_tests:
  wordpress_db_backup:
    skip: false

Reference¶

`skip`¶

Type : boolean

Skip the test if true.