cleantalk
Vulnerabilities and Security Researches

WPvivid Backup for MainWP, ec00cf2f6a6757dc3371250c1689bf0e482f89f9

CVE, Research URL

ec00cf2f6a6757dc3371250c1689bf0e482f89f9

Home page URL

Security reports for WPvivid Backup for MainWP

Application

WPvivid Backup for MainWP

Published on
-
Research Description
WPvivid Backup for MainWP [wpvivid-backup-mainwp] < 0.9.34 WordPress WPvivid Backup for MainWP Plugin <= 0.9.33 is vulnerable to Cross Site Scripting (XSS) Update the WordPress WPvivid Backup for MainWP plugin to the latest available version (at least 0.9.34). Khayal Farzaliyev (shaman0x01) discovered and reported this Cross Site Scripting (XSS) vulnerability in WordPress WPvivid Backup for MainWP Plugin. This could allow a malicious actor to inject malicious scripts, such as redirects, advertisements, and other HTML payloads into your website which will be executed when guests visit your site. This vulnerability has been fixed in version 0.9.34. Have additional information or questions about this entry? Get in touch.
Affected versions
max 0.9.34.
Status
vulnerable
Previous vulnerability researches
My auctions allegro (CVE-2025-27009) , Apr 16, 2025
My auctions allegro (CVE-2024-11707) , Dec 06, 2024
My auctions allegro (CVE-2025-68567) , Jan 10, 2026
My auctions allegro (CVE-2025-68566) , Jan 10, 2026
My auctions allegro (CVE-2025-12851) , Dec 10, 2025
New vulnerability
MapifyLite (by MapifyPro) (6be590d56cf666ad67a6e008b71242e607d966ea) , Jun 16, 2026
MapifyLite (by MapifyPro) (e5bfd53d-0d9a-42f2-8af8-5bb710bac828) , Jun 16, 2026
Posts List Designer by Category &#8211; List Category Posts Or Recent Posts (6d8910c719b2a132ec93828cd37e418b19cac960) , Jun 16, 2026
Posts List Designer by Category &#8211; List Category Posts Or Recent Posts (e7273a52d37b10c428e20c81e144ab0d172f52c8) , Jun 16, 2026
Stock Sync for WooCommerce (32b464c34b74a892762f56ea6c130c4a35d34abe) , Jun 16, 2026