CVE-2023-4274

Name of the Vulnerable Software and Affected Versions Migration, Backup, Staging – WPvivid plugin for WordPress versions up to, and including, 0.9.89

Description The issue allows authenticated attackers with administrative privileges to delete the contents of arbitrary directories on the server. This can be a critical issue in shared environments.

Recommendations For versions up to, and including, 0.9.89, update to a version higher than 0.9.89 to resolve the issue. As a temporary workaround, consider restricting administrative access to trusted users only until a patch is available.