WordPress Plugin Vulnerabilities

WPvivid Backup & Migration < 0.9.121 - Admin+ Arbitrary Directory Creation

Description

The plugin is vulnerable to arbitrary directory creation due to the check_filesystem_permissions() function not properly restricting the directories that can be created, or in what location. This makes it possible for authenticated attackers, with Administrator-level access and above, to create arbitrary directories.

Affects Plugins

Plugin icon
wpvivid-backuprestore
Fixed in 0.9.121

References

CVE
CVE-2025-12654
URL
https://www.wordfence.com/threat-intel/vulnerabilities/id/662aa8dd-69b7-49e3-811c-04329544e106

Classification

Type
FILE DELETION
OWASP top 10
A6: Security Misconfiguration
CWE
CWE-73
CVSS
2.7 (low)

Miscellaneous

Original Researcher
blue0x1
Verified
No
WPVDB ID
f9fd170d-0fe7-48be-8681-27caea74a304

Timeline

Publicly Published
2025-12-20 (about 4 months ago)
Added
2025-12-21 (about 4 months ago)
Last Updated
2025-12-21 (about 4 months ago)

Other

Published
Title
Published
2025-09-30
Title
FormGent < 1.0.4 - Unauthenticated Arbitrary File Deletion
Published
2025-03-19
Title
Order Export & Order Import for WooCommerce < 2.6.1 - Directory Traversal to Authenticated (Administrator+) Limited Arbitrary File Deletion via admin_log_page Function
Published
2023-10-12
Title
Remote Content Shortcode <= 1.5 - Authenticated(Contributor+) Local File Inclusion via shortcode
Published
2025-07-14
Title
Goza - Nonprofit Charity WordPress Theme < 3.2.3 - Missing Authorization to Unauthenticated Arbitrary File Deletion
Published
2025-05-21
Title
KBx Pro Ultimate < 8.0.5 - Authenticated (Subscriber+) Arbitrary File Deletion