WPvivid Backup and Migration
wpvividplugins
Developer
0.9.125
Latest version
900,000
Installations
No date
Last updated
Vulnerability history
0 present
23 patched
8 Mitigation rules
- Unauthenticated Arbitrary File Upload vulnerability<= 0.9.12311/02/2026
- Authenticated (Admin+) Arbitrary Directory Creation vulnerability<= 0.9.12031/12/2025
- Authenticated (Administrator+) Arbitrary File Upload vulnerability<= 0.9.11603/07/2025
- Authenticated (Admin+) Arbitrary File Upload via wpvivid_upload_file vulnerability<= 0.9.11222/02/2025
- Broken Access Control vulnerability<= 0.9.10603/01/2025
- Unauthenticated PHP Object Injection vulnerability<= 0.9.10714/11/2024
- Unauthenticated Sensitive Data Exposure vulnerability< 0.9.10612/09/2024
- Authenticated (Admin+) PHAR Deserialization vulnerability<= 0.9.9915/04/2024
- Missing Authorization vulnerability<= 0.9.9422/01/2024
- Missing Authorization vulnerability<= 0.9.6808/01/2024
- Unauthenticated SQL Injection vulnerability<= 0.9.6808/01/2024
- Google Drive Client Secret Exposure vulnerability<= 0.9.9116/10/2023
- Authenticated (Administrator+) Arbitrary Directory Deletion via Path Traversal vulnerability<= 0.9.8925/09/2023
- Authenticated (Administrator+) Stored Cross-Site Scripting vulnerability<= 0.9.8925/09/2023
- Authenticated(Administrator+) Stored Cross-Site Scripting vulnerability<= 0.9.9013/09/2023
- Privilege Escalation on Staging Environment vulnerability<= 0.9.9013/09/2023
- Authenticated Arbitrary File Deletion vulnerability0.9.7629/08/2022
- Authenticated PHAR Deserialization vulnerability<= 0.9.7418/08/2022
- Arbitrary File Read vulnerability<= 0.9.7007/04/2022
- Reflected Cross-Site Scripting (XSS) vulnerability<= 0.9.6921/03/2022
- Unauthenticated Stored Cross-Site Scripting (XSS) vulnerability<= 0.9.6831/01/2022
- SQL Injection (SQLi) vulnerability<= 0.9.5226/04/2021
- Missing Authorization vulnerability leading to Database Leak<= 0.9.3528/02/2020