CVE-2025-12394 | THREATINT

Description

The Backup Migration WordPress plugin before 2.0.0 does not properly generate its backup path in certain server configurations, allowing unauthenticated users to fetch a log that discloses the backup filename. The backup archive is then downloadable without authentication.

PUBLISHED Reserved 2025-10-28 | Published 2025-11-24 | Updated 2025-11-24 | Assigner WPScan

Problem types

CWE-200 Information Exposure

Product status

Default status

unaffected

Any version before 2.0.0

affected

Credits

ymmfty0 finder

WPScan coordinator

References

wpscan.com/...rability/e61293d0-2e1b-4dac-96c5-97fa17e38b16/ exploit vdb-entry technical-description

cve.org (CVE-2025-12394)

nvd.nist.gov (CVE-2025-12394)

Download JSON