VYPR

Wpvivid Backuprestore

by WordPress

Source repositories

CVEs (2)

  • CVE-2023-5120MedOct 20, 2023
    risk 0.29cvss 4.4epss 0.00

    The Migration, Backup, Staging – WPvivid plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the image file path parameter in versions up to, and including, 0.9.89 due to insufficient input sanitization and output escaping. This makes it possible for…

  • CVE-2025-12654LowDec 21, 2025
    risk 0.18cvss 2.7epss 0.00

    The Migration, Backup, Staging – WPvivid Backup & Migration plugin for WordPress is vulnerable to arbitrary directory creation in all versions up to, and including, 0.9.120. This is due to the check_filesystem_permissions() function not properly restricting the directories…