UpdraftPlus: WP Backup & Migration Plugin — Vulnerabilities & Security Advisories 3

All 3 CVE vulnerabilities found in UpdraftPlus: WP Backup & Migration Plugin, with AI-generated Chinese analysis, references, and POCs.

Vendor: davidanderson

CVE ID	Title	CVSS	Severity	Published
CVE-2025-0215	UpdraftPlus - Backup/Restore <= 1.24.12 - Reflected Cross-Site Scripting CWE-79	6.1	Medium	2025-01-15
CVE-2024-10957	UpdraftPlus: WP Backup & Migration Plugin 1.23.8 - 1.24.11 - Unauthenticated PHP Object Injection CWE-502	8.8	High	2025-01-04
CVE-2023-5982	UpdraftPlus <= 1.23.10 - Cross-Site Request Forgery to Google Drive Storage Update CWE-352	5.4	Medium	2023-11-07

All 3 known CVE vulnerabilities affecting UpdraftPlus: WP Backup & Migration Plugin with full Chinese analysis, references, and POCs where available.

Goal Reached Thanks to every supporter — we hit 100%!

UpdraftPlus: WP Backup & Migration Plugin — Vulnerabilities & Security Advisories 3