| CVE ID | Title | Vendor | Product | Severity | CVSS Score | Published At | AI Analysis |
|---|---|---|---|---|---|---|---|
| CVE-2025-48984 | Veeam Backup & Replication 安全漏洞 | Veeam | Backup and Replication | 超危 | - | 2025-10-30 23:31:34 | Deep Dive |
| CVE-2025-12247 | Hasleo Backup Suite HasleoImageMountService/HasleoBackupSuiteService unquoted search path | Hasleo | Backup Suite | High | 7.0 | 2025-10-27 08:02:06 | Deep Dive |
| CVE-2025-62946 | WordPress Everest Backup plugin <= 2.3.8 - Broken Access Control vulnerability | everestthemes | Everest Backup | Medium | 5.3 | 2025-10-27 01:34:08 | Deep Dive |
| CVE-2025-10579 | BackWPup <= 5.5.0 - Missing Authorization to Sensitive Information Exposure | wp_media | BackWPup – WordPress Backup & Restore Plugin | Medium | 5.3 | 2025-10-25 04:22:44 | Deep Dive |
| CVE-2025-11380 | Everest Backup <= 2.3.5 - Missing Authorization to Unauthenticated Information Exposure | everestthemes | Everest Backup – WordPress Cloud Backup, Migration, Restore & Cloning Plugin | Medium | 5.9 | 2025-10-11 02:24:52 | Deep Dive |
| CVE-2025-10306 | Backup Bolt <= 1.4.1 - Authenticated (Admin+) Arbitrary File Download | backupbolt | Backup Bolt | Low | 3.8 | 2025-10-03 11:17:14 | Deep Dive |
| CVE-2025-10744 | File Manager, Code editor, backup by Managefy <= 1.6.1 - Unauthenticated Information Exposure | softdiscover | File Manager, Code Editor, and Backup by Managefy | Medium | 5.9 | 2025-10-01 03:25:23 | Deep Dive |
| CVE-2025-9993 | Bei Fen – WordPress Backup Plugin <= 1.4.2 - Authenticated (Subscriber+) Local File Inclusion | d3rd4v1d | Bei Fen – WordPress Backup Plugin | High | 8.1 | 2025-09-30 03:35:27 | Deep Dive |
| CVE-2025-10307 | Backuply – Backup, Restore, Migrate and Clone <= 1.4.8 - Authenticated (Admin+) Arbitrary File Deletion | softaculous | Backuply – Backup, Restore, Migrate and Clone | Medium | 6.5 | 2025-09-26 06:43:28 | Deep Dive |
| CVE-2025-9573 | Command Injection in extension "TYPO3 Backup Plus" (ns_backup) | TYPO3 | Extension "TYPO3 Backup Plus" | - | - | 2025-09-02 08:42:56 | Deep Dive |
| CVE-2025-48109 | WordPress XM-Backup plugin <= 0.9.1 - CSRF to Stored XSS vulnerability | Xavier Media | XM-Backup | High | 7.1 | 2025-08-28 12:36:46 | Deep Dive |
| CVE-2025-9345 | File Manager, Code Editor, and Backup by Managefy <= 1.4.8 - Authenticated (Admin+) Path Traversal to Arbitrary File Download | softdiscover | File Manager, Code Editor, and Backup by Managefy | Medium | 4.9 | 2025-08-28 03:42:46 | Deep Dive |
| CVE-2025-49040 | WordPress Backup Bolt plugin <= 1.5.0 - Cross Site Request Forgery (CSRF) vulnerability | Backup Bolt | Backup Bolt | Medium | 4.3 | 2025-08-27 03:24:26 | Deep Dive |
| CVE-2025-8490 | All-in-One WP Migration and Backup <= 7.97 - Authenticated (Administrator+) Stored Cross-Site Scripting via Import | servmask | All-in-One WP Migration and Backup | Medium | 4.4 | 2025-08-26 23:22:41 | Deep Dive |
| CVE-2025-8611 | AOMEI Cyber Backup Missing Authentication for Critical Function Remote Code Execution Vulnerability | AOMEI | Cyber Backup | 超危 | - | 2025-08-20 16:26:21 | Deep Dive |
| CVE-2025-8610 | AOMEI Cyber Backup Missing Authentication for Critical Function Remote Code Execution Vulnerability | AOMEI | Cyber Backup | 超危 | - | 2025-08-20 16:25:52 | Deep Dive |
| CVE-2025-50031 | WordPress DB Backup <= 6.0 - Broken Access Control Vulnerability | syedamirhussain91 | DB Backup | Medium | 6.5 | 2025-08-14 10:34:06 | Deep Dive |
| CVE-2019-25224 | WP Database Backup < 5.2 - Unauthenticated OS Command Injection | databasebackup | WP Database Backup – Unlimited Database & Files Backup by Backup for WP | Critical | 9.8 | 2025-07-25 02:23:59 | Deep Dive |
| CVE-2015-10134 | Simple Backup <= 2.7.10 - Arbitrary File Download via Path Traversal | mywebsiteadvisor | Simple Backup | High | 7.5 | 2025-07-19 09:23:51 | Deep Dive |
| CVE-2025-5396 | Bears Backup <= 2.0.0 - Unauthenticated Remote Code Execution | Bearsthemes | Bears Backup | Critical | 9.8 | 2025-07-17 01:44:55 | Deep Dive |