N/A
2026-02-10< 0.9.124
Migration, Backup, Staging <= 0.9.123 - Unauthenticated Arbitrary File Upload
WPvivid — Backup, Migration & Staging
Minimum safe version
0.9.124
Update to 0.9.124 or later to address 37 fixable vulnerabilities
Latest available0.9.126 ✓
Low 2.7
2025-12-21< 0.9.121
CVE-2025-12654
High 7.2
2025-07-03< 0.9.117
Migration, Backup, Staging – WPvivid Backup & Migration <= 0.9.116 - Authenticated (Administrator+) Arbitrary File Upload
High 7.2
2025-02-22< 0.9.113
CVE-2024-13869
Medium 4.3
2025-01-07< 0.9.107
CVE-2024-56273
High 8.8
2024-11-14< 0.9.108
CVE-2024-10962
High 8.8
2024-10-16< 0.9.36
CVE-2020-36842
Medium 4.9
2024-10-16< 0.9.36
CVE-2020-36835
High 7.5
2024-10-02< 0.9.106
CVE-2024-7315
High 7.2
2024-04-15< 0.9.100
WordPress WPvivid Backup and Migration Plugin <= 0.9.99 is vulnerable to PHP Object Injection
Critical 9.1
2024-02-29< 0.9.69
CVE-2024-1981
Critical 9.1
2024-02-29< 0.9.69
CVE-2024-1982
Medium 5.3
2024-02-05< 0.9.95
CVE-2023-4637
Critical 9.3
2023-10-20< 0.9.92
CVE-2023-5576
Medium 4.8
2023-10-20< 0.9.90
CVE-2023-5120
Medium 6.5
2023-10-20< 0.9.90
CVE-2023-4274
Medium 4.8
2023-10-20< 0.9.90
CVE-2023-5121
N/A
2023-09-13< 0.9.91
WordPress WPvivid Backup and Migration Plugin <= 0.9.90 is vulnerable to Cross Site Scripting (XSS)
High 8.8
2024-05-17< 0.9.91
CVE-2023-41243
N/A
< 0.9.91
Migration, Backup, Staging – WPvivid <= 0.9.90 - Authenticated(Administrator+) Stored Cross-Site Scripting
N/A
2023-09-12< 0.9.91
WPvivid Backup Plugin <= 0.9.90 - Missing Authorization via 'start_staging' and 'get_staging_progress'
N/A
< 0.9.36
WPvivid Backup < 0.9.36 - Missing Authorization Leading To Database Leak
N/A
< 0.9.77
WPvivid Backup 0.9.76 - Admin+ Arbitrary File Deletion
N/A
< 0.9.56
WPvivid Backup < 0.9.56 - Reflected Cross-Site Scripting
N/A
2020-03-13< 0.9.36
Migration, Backup, Staging – WPvivid <= 0.9.35 - Authenticated (Subscriber+) Arbitrary File Upload
N/A
2020-03-23< 0.9.36
Migration, Backup, Staging – WPvivid <= 0.9.35 - Sensitive Information Disclosure
N/A
2021-08-09< 0.9.56
Migration, Backup, Staging – WPvivid <= 0.9.55 - Reflected Cross-Site Scripting
N/A
2022-08-16< 0.9.76
Migration, Backup, Staging – WPvivid <= 0.9.75 - Authenticated (Admin+) Directory Traversal
N/A
2022-08-29< 0.9.77
WPvivid Backup 0.9.76 - Authenticated (Administrator+) Arbitrary File Deletion
Medium 4.9
2022-09-16< 0.9.76
CVE-2022-2863
N/A
2022-08-29< 0.9.77
WordPress WPvivid Backup plugin 0.9.76 - Authenticated Arbitrary File Deletion vulnerability
High 7.2
2022-09-06< 0.9.76
CVE-2022-2442
N/A
2020-02-28< 0.9.36
WordPress WPvivid Backup and Migration plugin <= 0.9.35 - Missing Authorization vulnerability leading to Database Leak
N/A
2021-04-26< 0.9.53
WordPress WPvivid Backup and Migration plugin <= 0.9.52 - SQL Injection (SQLi) vulnerability
Low 2.7
2022-04-11< 0.9.71
CVE-2022-27844
Medium 6.1
2022-04-11< 0.9.70
CVE-2022-0531
Medium 6.1
2022-02-28< 0.9.71
CVE-2021-24994