WPvivid Backup & Migration < 0.9.117 – Admin+ Arbitrary File Upload | CVE 2025-5961 | Plugin Vulnerabilities

Description

The plugin is vulnerable to arbitrary file uploads due to missing file type validation in the 'wpvivid_upload_import_files' function. This makes it possible for authenticated attackers, with Administrator-level access and above, to upload arbitrary files on the affected site's server which may make remote code execution possible. NOTE: Uploaded files are only accessible on WordPress instances running on the NGINX web server as the existing .htaccess within the target file upload folder prevents access on Apache servers.

Affects Plugins

wpvivid-backuprestore

Fixed in 0.9.117

References

CVE

URL

https://www.wordfence.com/threat-intel/vulnerabilities/id/d8ceb4a1-9354-4ed3-9a8f-45ba2057a810

Miscellaneous

Original Researcher

Ryan Kozak

Verified

No

WPVDB ID

630d1a99-510e-4c18-b638-e1f4351b0b52

Timeline

Publicly Published

2025-07-03 (about 10 months ago)

Added

2025-07-03 (about 10 months ago)

Last Updated

2025-07-03 (about 10 months ago)

Other

Published

Title

Published

2014-08-01

Title

NextGEN Gallery 1.9.12 - Arbitrary File Upload

Published

2014-08-01

Title

Cold Fusion - Arbitrary File Upload

Published

2025-04-01

Title

Multiple Themify Themes - Contributor+ Arbitrary File Upload

Published

2021-05-13

Title

External Media < 1.0.34 - Authenticated Arbitrary File Upload

Published

2025-03-07

Title

Aiomatic - AI Content Writer, Editor, ChatBot & AI Toolkit < 2.3.9 - Missing Authorization to Authenticated (Contributor+) Arbitrary File Upload