Bugtraq: WordPress Database Backup

My WordPress Database Backup plugin appeared on Bugtraq today. The folks who found the directory traversal vulnerability didn’t inform me about it. I don’t know if they informed the WordPress security folks. A kind reader forwarded to me the announcement.

I don’t have a fix at this time. Stay tuned here, or at the WordPress support forums.

UPDATE: Ryan Boren cooked up a fix for the directory traversal vulnerability. Download it here.