Vulnerabilities and security researches for1-click-migration 1-click-migration

Feb 19, 2025

CVE, Research URL: CVE-2024-13609
Home page URL: Security reports for 1 Click WordPress Migration Plugin – 100% FREE for a limited time
Application: 1 Click WordPress Migration Plugin – 100% FREE for a limited time
Date: Feb 18, 2025
Research Description: The 1 Click WordPress Migration Plugin – 100% FREE for a limited time plugin for WordPress is vulnerable to Sensitive Information Exposure in all versions up to, and including, 2.1 via the class-ocm-backup.php. This makes it possible for unauthenticated attackers to extract sensitive data including usernames and their respective password hashes during a short window of time in which the backup is in process.
Affected versions: Min -, max -.
Status: vulnerable

Apr 06, 2025

CVE, Research URL: CVE-2025-32257
Home page URL: Security reports for 1 Click WordPress Migration Plugin – 100% FREE for a limited time
Application: 1 Click WordPress Migration Plugin – 100% FREE for a limited time
Date: Apr 04, 2025
Research Description: Exposure of Sensitive System Information Due to Uncleared Debug Information vulnerability in 1clickmigration 1 Click WordPress Migration allows Retrieve Embedded Sensitive Data. This issue affects 1 Click WordPress Migration: from n/a through 2.2.
Affected versions: Min -, max -.
Status: vulnerable