Bugtraq: WordPress Database Backup
My WordPress Database Backup plugin appeared on Bugtraq today. The folks who found the directory traversal vulnerability didn't inform me about it. I don't know if they informed the WordPress security folks. A kind reader forwarded to me the announcement.
I don't have a fix at this time. Stay tuned here, or at the WordPress support forums.