cleantalk
Vulnerabilities and Security Researches

Vulnerabilities and security researches forprime-mover prime-mover

Direction: ascending
Jun 07, 2024

Migrate WordPress Website & Backups – Prime Mover # 5ac99fe264e79f6543af2077c49a79b41df63e28

CVE, Research URL

5ac99fe264e79f6543af2077c49a79b41df63e28

Home page URL

Security reports for Migrate WordPress Website & Backups – Prime Mover

Application

Migrate WordPress Website & Backups – Prime Mover

Date
Feb 28, 2022
Research Description
Migrate WordPress Website &amp; Backups &#8211; Prime Mover [prime-mover] < 1.5.0 WordPress Migrate WordPress Website & Backups – Prime Mover plugin <= 1.4.9 - Toggle The Debug Mode via Cross-Site Request Forgery (CSRF) vulnerability Toggle The Debug Mode via Cross-Site Request Forgery (CSRF) vulnerability discovered in WordPress Migrate WordPress Website & Backups – Prime Mover plugin (versions <= 1.4.9).
Affected versions
max 1.5.0.
Status
vulnerable

Migrate WordPress Website &amp; Backups &#8211; Prime Mover # CVE-2023-6505

CVE, Research URL

CVE-2023-6505

Home page URL

Security reports for Migrate WordPress Website &amp; Backups &#8211; Prime Mover

Application

Migrate WordPress Website &amp; Backups &#8211; Prime Mover

Date
Jan 09, 2024
Research Description
The Migrate WordPress Website & Backups WordPress plugin before 1.9.3 does not prevent directory listing in sensitive directories containing export files.
Affected versions
max 1.9.3.
Status
vulnerable
Nov 15, 2024

Migrate WordPress Website &amp; Backups &#8211; Prime Mover # CVE-2022-4974

CVE, Research URL

CVE-2022-4974

Home page URL

Security reports for Migrate WordPress Website &amp; Backups &#8211; Prime Mover

Application

Migrate WordPress Website &amp; Backups &#8211; Prime Mover

Date
Oct 16, 2024
Research Description
The Freemius SDK, as used by hundreds of WordPress plugin and theme developers, was vulnerable to Cross-Site Request Forgery and Information disclosure due to missing capability checks and nonce protection on the _get_debug_log, _get_db_option, and the _set_db_option functions in versions up to, and including 2.4.2. Any WordPress plugin or theme running a version of Freemius less than 2.4.3 is vulnerable.
Affected versions
max 1.5.0.
Status
vulnerable
Jun 13, 2026

Migrate WordPress Website &amp; Backups &#8211; Prime Mover # CVE-2023-33999

CVE, Research URL

CVE-2023-33999

Home page URL

Security reports for Migrate WordPress Website &amp; Backups &#8211; Prime Mover

Application

Migrate WordPress Website &amp; Backups &#8211; Prime Mover

Date
Jun 11, 2026
Research Description
Improper neutralization of input during web page generation ('cross-site scripting') vulnerability in WPVibes WP Mail Log allows DOM-Based XSS. This issue affects WP Mail Log: from n/a through 1.0.2.
Affected versions
max 1.8.8.
Status
vulnerable