1 Click WordPress Migration Plugin – 100% FREE for a limited time < 2.3 – Missing Authorization to Authenticated (Subscriber+) Arbitrary File Upload | CVE 2025-3455 | Plugin Vulnerabilities

Description

The 1 Click WordPress Migration Plugin – 100% FREE for a limited time plugin for WordPress is vulnerable to unauthorized modification of data due to a missing capability check on the 'start_restore' function in all versions up to, and including, 2.2. This makes it possible for authenticated attackers, with Subscriber-level access and above, to upload arbitrary files on the affected site's server which may make remote code execution possible.

Affects Plugins

1-click-migration

Fixed in 2.3

References

CVE

URL

https://www.wordfence.com/threat-intel/vulnerabilities/id/e982ae88-cfd0-46b9-ad64-00e398d307d6

Miscellaneous

Original Researcher

Kate Kligman

Verified

No

WPVDB ID

fae6631f-d7a4-4729-bc76-ce84b61da31e

Timeline

Publicly Published

2025-05-08 (about 1 year ago)

Added

2025-05-08 (about 1 year ago)

Last Updated

2025-12-11 (about 5 months ago)

Other

Published

Title

Published

2025-11-07

Title

Alex Reservations: Smart Restaurant Booking < 2.2.4 - Authenticated (Admin+) Arbitrary File Upload

Published

2014-08-01

Title

Category List Portfolio Page 0.9 - Shell Upload

Published

2024-11-05

Title

mFolio Lite < 1.2.2 - Missing Authorization to Authenticated (Author+) File Upload via EXE and SVG Files

Published

2021-10-21

Title

Envato Elements < 2.0.11 - Contributor+ Arbitrary File Upload

Published

2021-10-21

Title

Catch Themes Demo Import < 1.8 - Admin+ Arbitrary File Upload