CVE-2024-13869

HIGH

WPvivid Backup & Migration < 0.9.112 - Authenticated Arbitrary File Upload via upload_files Function

Title source: llm

Exploitation Summary

EIP tracks 1 public exploit for CVE-2024-13869. PoCs published by d0n601.

AI-analyzed exploit summary This repository contains a functional exploit for CVE-2024-13869, demonstrating an authenticated arbitrary file upload vulnerability in the WPvivid Backup plugin (versions <= 0.9.112). The exploit uploads a PHP web shell via the `wpvivid_upload_file` action, bypassing file type restrictions due to insufficient sanitization.

Description

The Migration, Backup, Staging – WPvivid Backup & Migration plugin for WordPress is vulnerable to arbitrary file uploads due to missing file type validation in the 'upload_files' function in all versions up to, and including, 0.9.112. This makes it possible for authenticated attackers, with Administrator-level access and above, to upload arbitrary files on the affected site's server which may make remote code execution possible. NOTE: Uploaded files are only accessible on WordPress instances running on the NGINX web server as the existing .htaccess within the target file upload folder prevents access on Apache servers.

Exploits (1)

nomisec WORKING POC

by d0n601 · poc

https://github.com/d0n601/CVE-2024-13869

View Code ZIP pw:eip

This repository contains a functional exploit for CVE-2024-13869, demonstrating an authenticated arbitrary file upload vulnerability in the WPvivid Backup plugin (versions <= 0.9.112). The exploit uploads a PHP web shell via the `wpvivid_upload_file` action, bypassing file type restrictions due to insufficient sanitization.

Classification

Working Poc 100%

Attack Type

Rce

Complexity

Moderate

Reliability

Reliable

Target: WPvivid Backup & Restore plugin for WordPress <= 0.9.112

Auth required

Prerequisites: WordPress admin credentials · WPvivid Backup plugin installed and activated

MITRE ATT&CK

T1190 - Exploit Public-Facing Application T1505.003 - Web Shell

devstral-2 · analyzed Feb 18, 2026 Full analysis →

References (4)

Core 4

Core References

Exploit, Product

https://ryankozak.com/posts/cve-2024-13869/

Exploit, Third Party Advisory

https://github.com/d0n601/CVE-2024-13869

Patch

https://plugins.trac.wordpress.org/changeset/3242904/wpvivid-backuprestore

Third Party Advisory

https://www.wordfence.com/threat-intel/vulnerabilities/id/0082e46d-fdbe-4ab7-bba3-0681a25d4495?source=cve

Scores

CVSS v3 7.2

EPSS 0.0195

EPSS Percentile 77.6%

Attack Vector NETWORK

CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H

CISA SSVC

Vulnrichment

Exploitation poc

Automatable no

Technical Impact total

Details

CWE

CWE-434

Status published

Products (2)

wpvivid/wpvivid_backup_\&_migration < 0.9.113

wpvividplugins/WPvivid — Backup, Migration & Staging < 0.9.112

Published Feb 22, 2025

Tracked Since Feb 18, 2026