CVE-2026-4031 | wpengine Database Backup Plugin up to 2.5.2 on WordPress wp_db_temp_dir authorization

A vulnerability classified as problematic was found in wpengine Database Backup Plugin up to 2.5.2 on WordPress. This affects an unknown part of the component Database Backup Handler. Such manipulation of the argument wp_db_temp_dir leads to missing authorization.

This vulnerability is referenced as CVE-2026-4031. It is possible to launch the attack remotely. No exploit is available.

Upgrading the affected component is advised.VulDB Recent EntriesRead More