Inisev Backupbliss – Backup & Migration With Free Cloud Storage
8 CVEs affecting Inisev Backupbliss – Backup & Migration With Free Cloud Storage. Latest disclosed: 2026-04-07. Critical: 2, High: 3.
| CVE | Severity | Score | Published | Summary |
|---|---|---|---|---|
CVE-2023-6972 | Critical | 9.8 | 2023-12-23 | The Backup Migration plugin for WordPress is vulnerable to Path Traversal in all versions up to, and including, 1.3.9 via the 'content-backups' and 'content-na… |
CVE-2023-6553 | Critical | 9.8 | 2023-12-15 | The Backup Migration plugin for WordPress is vulnerable to Remote Code Execution in all versions up to, and including, 1.3.7 via the /includes/backup-heart.php… |
CVE-2024-10932 | High | 8.8 | 2025-01-04 | The Backup Migration plugin for WordPress is vulnerable to PHP Object Injection in all versions up to, and including, 1.4.6 via deserialization of untrusted in… |
CVE-2023-6266 | High | 7.5 | 2024-01-11 | The Backup Migration plugin for WordPress is vulnerable to unauthorized access of data due to insufficient path and file validation on the BMI_BACKUP case of t… |
CVE-2023-7002 | High | 7.2 | 2023-12-23 | The Backup Migration plugin for WordPress is vulnerable to OS Command Injection in all versions up to, and including, 1.3.9 via the 'url' parameter. This vuln… |
CVE-2025-14944 | Medium | 5.3 | 2026-04-07 | The Backup Migration plugin for WordPress is vulnerable to Missing Authorization in all versions up to, and including, 2.0.0. This is due to a missing capabili… |
CVE-2023-0958 | Medium | 4.3 | 2023-07-28 | Several plugins for WordPress by Inisev are vulnerable to unauthorized installation of plugins due to a missing capability check on the handle_installation fun… |
CVE-2023-3977 | Medium | 4.3 | 2023-07-28 | Several plugins for WordPress by Inisev are vulnerable to Cross-Site Request Forgery to unauthorized installation of plugins due to a missing nonce check on th… |