Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
๐Ÿ”ฅ Daily Hot!
๐Ÿ’ช๐Ÿฝ CPE Enhanced Advisories
๐Ÿ•ถ Shadow Exploits
๐Ÿ•ต๐Ÿผ Vulners CPE
๐Ÿ” Security news
๐Ÿ’ป Exploit updates
๐Ÿ“‘ Blogs review
๐Ÿง Linux vulnerabilities
๐Ÿž Bugbounty
๐Ÿค– AI High Score
๐Ÿ“ฐ CVE Feed
show all

76 matches found

Nuclei
Nucleiโ€ขadded 17 hours agoโ€ข16 views

WPvivid Backup & Migration <= 0.9.123 - Arbitrary File Upload

WPvivid Backup & Migration plugin for WordPress = 0.9.123 contains an unauthenticated arbitrary file upload vulnerability caused by improper error handling in RSA decryption and lack of path sanitization, letting unauthenticated attackers upload arbitrary PHP files and achieve remote code executi...

9.8CVSS8.8AI score0.16794EPSS
Exploits13References4
Nuclei
Nucleiโ€ขadded 17 hours agoโ€ข17 views

WordPress WPvivid Backup & Migration Plugin <= 0.9.116 - Authenticated Arbitrary File Upload

The Migration, Backup, Staging โ€“ WPvivid Backup & Migration plugin for WordPress is vulnerable to arbitrary file uploads due to missing file type validation in the 'wpvividuploadimportfiles' function in all versions up to, and including, 0.9.116. id: CVE-2025-5961 info: name: WordPress WPvivid...

7.2CVSS5.5AI score0.02024EPSS
Exploits3References2
NVD
NVDโ€ขadded 5 days agoโ€ข8 views

CVE-2025-12656

The Migration, Backup, Staging โ€“ WPvivid Backup & Migration plugin for WordPress is vulnerable to arbitrary directory deletion due to insufficient file path validation in the deletecancelstagingsite function in all versions up to, and including, 0.9.128. This makes it possible for authenticated...

3.8CVSS0.00043EPSS
Exploits0References6
GithubExploit
GithubExploitโ€ขadded 2026/03/10 10:23 p.m.โ€ข183 views

Exploit for CVE-2026-1357

๐Ÿงจ CVE-2026-1357 โ€“ WPvivid Null-Key Exploit Tool CVE-2026-135...

9.8CVSS5.9AI score0.16794EPSS
Exploits13
GithubExploit
GithubExploitโ€ขadded 2026/02/14 5:15 a.m.โ€ข341 views

Exploit for CVE-2026-1357

CVE-2026-1357 โ€” WPvivid Backup & Migration RCE CVE Credit...

9.8CVSS5.6AI score0.16794EPSS
Exploits13
GithubExploit
GithubExploitโ€ขadded 2026/02/13 9:12 a.m.โ€ข429 views

Exploit for CVE-2026-1357

CVE-2026-1357 โ€” WPvivid Backup & Migration RCE Unauthentica...

9.8CVSS6.3AI score0.16794EPSS
Exploits13
ATTACKERKB
ATTACKERKBโ€ขadded 2026/02/11 5:30 a.m.โ€ข25 views

CVE-2026-1357

The Migration, Backup, Staging โ€“ WPvivid Backup & Migration plugin for WordPress is vulnerable to Unauthenticated Arbitrary File Upload in versions up to and including 0.9.123. This is due to improper error handling in the RSA decryption process combined with a lack of path sanitization when...

9.8CVSS6.2AI score0.16794EPSS
Exploits13References9
Wordfence Blog
Wordfence Blogโ€ขadded 2026/02/10 5:32 p.m.โ€ข16 views

800,000 WordPress Sites Affected by Arbitrary File Upload Vulnerability in WPvivid Backup WordPress Plugin

On January 12th, 2026, we received a submission for an Arbitrary File Upload vulnerability in WPvivid Backup, a WordPress plugin with more than 800,000 active installations. This vulnerability can be used by unauthenticated attackers to upload arbitrary files to a vulnerable site and achieve remo...

9.8CVSS7.2AI score0.16794EPSS
Exploits13
Positive Technologies
Positive Technologiesโ€ขadded 2026/02/10 12:0 a.m.โ€ข9 views

PT-2026-7477

Name of the Vulnerable Software and Affected Versions Migration, Backup, Staging โ€“ WPvivid Backup & Migration versions prior to 0.9.124 Description The plugin is subject to an unauthenticated arbitrary file upload that can lead to remote code execution and full site takeover. This issue affects...

9.8CVSS8AI score0.16794EPSS
Exploits13References46
Patchstack
Patchstackโ€ขadded 2025/12/31 12:0 a.m.โ€ข6 views

WordPress WPvivid Backup & Migration plugin <= 0.9.120 - Authenticated (Admin+) Arbitrary Directory Creation vulnerability

Authenticated Admin+ Arbitrary Directory Creation vulnerability discovered by blue0x1 in WordPress Plugin WPvivid Backup and Migration versions = 0.9.120...

2.7CVSS6.7AI score0.00009EPSS
Exploits2References1Affected Software1
RedhatCVE
RedhatCVEโ€ขadded 2025/12/22 3:23 a.m.โ€ข3 views

CVE-2025-12654

The Migration, Backup, Staging โ€“ WPvivid Backup & Migration plugin for WordPress is vulnerable to arbitrary directory creation in all versions up to, and including, 0.9.120. This is due to the checkfilesystempermissions function not properly restricting the directories that can be created, or in...

2.7CVSS6AI score0.00009EPSS
Exploits2References1
NVD
NVDโ€ขadded 2025/12/21 4:16 a.m.โ€ข4 views

CVE-2025-12654

The Migration, Backup, Staging โ€“ WPvivid Backup & Migration plugin for WordPress is vulnerable to arbitrary directory creation in all versions up to, and including, 0.9.120. This is due to the checkfilesystempermissions function not properly restricting the directories that can be created, or in...

2.7CVSS0.00009EPSS
Exploits2References6
Cvelist
Cvelistโ€ขadded 2025/12/21 3:20 a.m.โ€ข18 views

CVE-2025-12654 Migration, Backup, Staging โ€“ WPvivid Backup & Migration <= 0.9.120 - Authenticated (Admin+) Arbitrary Directory Creation

The Migration, Backup, Staging โ€“ WPvivid Backup & Migration plugin for WordPress is vulnerable to arbitrary directory creation in all versions up to, and including, 0.9.120. This is due to the checkfilesystempermissions function not properly restricting the directories that can be created, or in...

2.7CVSS0.00009EPSS
Exploits2References6
EUVD
EUVDโ€ขadded 2025/10/03 8:7 p.m.โ€ข2 views

EUVD-2024-35423

Malicious code in bioql PyPI...

7.1CVSS6.6AI score0.00118EPSS
Exploits0References1
EUVD
EUVDโ€ขadded 2025/10/03 8:7 p.m.โ€ข11 views

EUVD-2025-19880

Malicious code in bioql PyPI...

7.2CVSS6.3AI score0.02024EPSS
Exploits3References7
EUVD
EUVDโ€ขadded 2025/10/03 8:7 p.m.โ€ข1 views

EUVD-2024-53070

Malicious code in bioql PyPI...

9.8CVSS8.7AI score0.00276EPSS
Exploits0References1
EUVD
EUVDโ€ขadded 2025/10/03 8:7 p.m.โ€ข4 views

EUVD-2023-45760

Malicious code in bioql PyPI...

8.8CVSS8.4AI score0.00206EPSS
Exploits0References1
RedhatCVE
RedhatCVEโ€ขadded 2025/07/05 2:25 p.m.โ€ข12 views

CVE-2025-5961

The Migration, Backup, Staging โ€“ WPvivid Backup & Migration plugin for WordPress is vulnerable to arbitrary file uploads due to missing file type validation in the 'wpvividuploadimportfiles' function in all versions up to, and including, 0.9.116. This makes it possible for authenticated attackers...

7.2CVSS7.3AI score0.02024EPSS
Exploits3References1
GithubExploit
GithubExploitโ€ขadded 2025/07/04 10:57 a.m.โ€ข281 views

Exploit for Unrestricted Upload of File with Dangerous Type in Wpvivid Migration\,_Backup\,_Staging

๐Ÿšจ Migration, Backup, Staging โ€“ WPvivid Backup & Migration ๐Ÿ“ˆ...

7.2CVSS7.3AI score0.02024EPSS
Exploits3
Cvelist
Cvelistโ€ขadded 2025/07/03 1:44 p.m.โ€ข13 views

CVE-2025-5961 Migration, Backup, Staging โ€“ WPvivid Backup & Migration <= 0.9.116 - Authenticated (Administrator+) Arbitrary File Upload

The Migration, Backup, Staging โ€“ WPvivid Backup & Migration plugin for WordPress is vulnerable to arbitrary file uploads due to missing file type validation in the 'wpvividuploadimportfiles' function in all versions up to, and including, 0.9.116. This makes it possible for authenticated attackers...

7.2CVSS0.02024EPSS
Exploits3References7
Rows per page
Query Builder