EUVD-2026-36215

The UpdraftPlus: WP Backup & Migration Plugin plugin for WordPress is vulnerable to Authentication Bypass in all versions up to, and including, 1.26.4 via the UpdraftPlusRemoteCommunicationsV2::wploaded function. This is due to insufficient validation of the remote communications message format,...

PT-2026-48532

Name of the Vulnerable Software and Affected Versions UpdraftPlus versions prior to 1.26.5 UpdraftCentral versions prior to 0.8.32 Description An unauthenticated authentication bypass allows remote code execution on sites connected to UpdraftCentral, a remote management dashboard. The issue occur...

EUVD-2023-58249

Malicious code in bioql PyPI...

WordPress plugin UpdraftPlus 安全漏洞

WordPress is the Wordpress Foundation's set of blogging platform developed using the PHP language . The platform supports personal blog sites on PHP and MySQL servers.WordPress plugin is an open source application plugin for WordPress. A security vulnerability exists in the WordPress plugin...

WordPress updraftplus plugin cross-site scripting vulnerability (CNVD-2019-30397)

WordPress is a blogging platform developed by the WordPress Foundation using the PHP language. The platform supports personal blog sites on PHP and MySQL servers. updraftplus is a WordPress backup, restore, and clone plugin used in it. A cross-site scripting vulnerability exists in the WordPress...