CVE-2018-25437 | THREATINT

Description

WordPress CherryFramework Themes 3.1.4 contains an information disclosure vulnerability that allows unauthenticated attackers to download sensitive backup files by accessing the download_backup.php endpoint. Attackers can directly access the download_backup.php script in the admin/data_management directory to obtain ZIP archives containing the entire wp-content/themes directory contents.

PUBLISHED Reserved 2026-06-15 | Published 2026-06-15 | Updated 2026-06-15 | Assigner VulnCheck

HIGH: 8.7CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N

HIGH: 7.5CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

Problem types

Missing Authentication for Critical Function

Product status

3.1.4

affected

Credits

b1p0l4r finder

References

www.exploit-db.com/exploits/45896 (ExploitDB-45896) exploit

www.cherryframework.com/ (Official Product Homepage) product

www.vulncheck.com/...ryframework-themes-backup-file-download (VulnCheck Advisory: WordPress CherryFramework Themes 3.1.4 Backup File Download) third-party-advisory

cve.org (CVE-2018-25437)

nvd.nist.gov (CVE-2018-25437)

Download JSON