The Migration, Backup, Staging WordPress plugin before 0.9.106 does not use sufficient randomness in the filename that is created when generating a backup, which could be bruteforced by attackers to leak sensitive information about said backups.CreditsDmitrii IgnatyevWPScanReferenceshttps://wpscan.com/vulnerability/456b728b-a451-4afb-895f-850ddc4fb589/