CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

The Bei Fen – WordPress Backup Plugin plugin for WordPress is vulnerable to Local File Inclusion in all versions up to, and including, 1.4.2 via the 'task'. This makes it possible for authenticated attackers, with Subscriber-level access and above, to include and execute arbitrary .php files on t...

8.1CVSS7AI score0.00664EPSS

Exploits0References1

Positive Technologies•added 2025/10/01 12:0 a.m.•4 views

PT-2025-40060

Name of the Vulnerable Software and Affected Versions The File Manager, Code Editor, and Backup by Managefy plugin for WordPress versions prior to 1.6.2 Description The plugin is susceptible to a sensitive information exposure issue due to publicly exposed log files. This allows unauthenticated...

5.3CVSS6.6AI score0.00348EPSS

Exploits0References8

NVD•added 2025/09/30 11:37 a.m.•3 views

CVE-2025-9993

8.1CVSS0.00664EPSS

Exploits0References3

CVE•added 2025/09/30 3:35 a.m.•20 views

CVE-2025-9993

The CVE-2025-9993 entry concerns the Bei Fen – WordPress Backup Plugin for WordPress. It describes a Local File Inclusion (LFI) vulnerability exploitable via the task parameter in all versions up to 1.4.2, allowing authenticated users with Subscriber-level access or higher to include and execute ...

8.1CVSS6.8AI score0.00664EPSS

Exploits0References3

Cvelist•added 2025/09/30 3:35 a.m.•6 views

CVE-2025-9993 Bei Fen – WordPress Backup Plugin <= 1.4.2 - Authenticated (Subscriber+) Local File Inclusion

8.1CVSS0.00664EPSS

Exploits0References3

RedhatCVE•added 2025/09/27 7:45 a.m.•3 views

CVE-2025-10307

The Backuply – Backup, Restore, Migrate and Clone plugin for WordPress is vulnerable to arbitrary file deletion due to insufficient file path validation in the delete backup functionality in all versions up to, and including, 1.4.8. This makes it possible for authenticated attackers, with...

6.5CVSS7.3AI score0.00621EPSS

Exploits0References1

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by