VYPR

Wp Staging

by Wp Staging

Source repositories

CVEs (4)

  • CVE-2024-3412CriMay 29, 2024
    risk 0.53cvss 9.1epss 0.01

    The WP STAGING WordPress Backup Plugin – Migration Backup Restore plugin for WordPress is vulnerable to arbitrary file uploads due to missing file type validation in the wpstg_processing AJAX action in all versions up to, and including, 3.4.3. This makes it possible for…

  • CVE-2024-5551HigJun 14, 2024
    risk 0.49cvss 7.5epss 0.00

    The WP STAGING Pro WordPress Backup Plugin plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to, and including, 5.6.0. This is due to missing or incorrect nonce validation on the 'sub' parameter called from the WP STAGING WordPress Backup Plugin…

  • CVE-2025-3104MedApr 16, 2025
    risk 0.34cvss 5.3epss 0.00

    The WP STAGING Pro WordPress Backup Plugin for WordPress is vulnerable to Information Exposure in all versions up to and including 6.1.2 due to missing capability checks on the getOutdatedPluginsRequest() function. This makes it possible for unauthenticated attackers to reveal…

  • CVE-2024-4469May 31, 2024
    risk 0.00cvss epss 0.01

    The WP STAGING WordPress Backup Plugin WordPress plugin before 3.5.0 does not prevent users with the administrator role from pinging conducting SSRF attacks, which may be a problem in multisite configurations.