{"dataType": "CVE_RECORD", "dataVersion": "5.2", "cveMetadata": {"cveId": "CVE-2025-10304", "assignerOrgId": "b15e7b5b-3da4-40ae-a43c-f7aa60e62599", "state": "PUBLISHED", "assignerShortName": "Wordfence", "dateReserved": "2025-09-11T21:54:46.884Z", "datePublished": "2025-12-03T03:27:15.009Z", "dateUpdated": "2026-04-08T17:33:49.946Z"}, "containers": {"cna": {"providerMetadata": {"orgId": "b15e7b5b-3da4-40ae-a43c-f7aa60e62599", "shortName": "Wordfence", "dateUpdated": "2026-04-08T17:33:49.946Z"}, "affected": [{"vendor": "everestthemes", "product": "Everest Backup \u2013 WordPress Cloud Backup, Migration, Restore & Cloning Plugin", "versions": [{"version": "0", "status": "affected", "lessThanOrEqual": "2.3.8", "versionType": "semver"}], "defaultStatus": "unaffected"}], "descriptions": [{"lang": "en", "value": "The Everest Backup \u2013 WordPress Cloud Backup, Migration, Restore & Cloning Plugin plugin for WordPress is vulnerable to unauthorized access due to a missing capability check on the process_status_unlink() function in all versions up to, and including, 2.3.8. This makes it possible for unauthenticated attackers to delete the back-up progress files and cause a back-up to fail while it is in progress."}], "title": "Everest Backup \u2013 WordPress Cloud Backup, Migration, Restore & Cloning Plugin <= 2.3.8 - Missing Authorization to Unauthenticated Backup Failure", "references": [{"url": "https://www.wordfence.com/threat-intel/vulnerabilities/id/f7d7c619-7dc0-47a5-a203-6df4dfa0158b?source=cve"}, {"url": "https://plugins.trac.wordpress.org/changeset?sfp_email=&sfph_mail=&reponame=&old=3400800%40everest-backup&new=3400800%40everest-backup&sfp_email=&sfph_mail="}], "problemTypes": [{"descriptions": [{"lang": "en", "description": "CWE-862 Missing Authorization", "cweId": "CWE-862", "type": "CWE"}]}], "metrics": [{"cvssV3_1": {"version": "3.1", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N", "baseScore": 5.3, "baseSeverity": "MEDIUM"}}], "credits": [{"lang": "en", "type": "finder", "value": "Jonas Benjamin Friedli"}], "timeline": [{"time": "2025-09-18T17:25:45.000Z", "lang": "en", "value": "Vendor Notified"}, {"time": "2025-12-02T15:27:08.000Z", "lang": "en", "value": "Disclosed"}]}, "adp": [{"metrics": [{"other": {"type": "ssvc", "content": {"timestamp": "2025-12-03T14:43:59.973715Z", "id": "CVE-2025-10304", "options": [{"Exploitation": "none"}, {"Automatable": "yes"}, {"Technical Impact": "partial"}], "role": "CISA Coordinator", "version": "2.0.3"}}}], "title": "CISA ADP Vulnrichment", "providerMetadata": {"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "shortName": "CISA-ADP", "dateUpdated": "2025-12-03T14:44:15.444Z"}}]}}

{"dataType": "CVE_RECORD", "containers": {"adp": [{"title": "CISA ADP Vulnrichment", "metrics": [{"other": {"type": "ssvc", "content": {"id": "CVE-2025-10304", "role": "CISA Coordinator", "options": [{"Exploitation": "none"}, {"Automatable": "yes"}, {"Technical Impact": "partial"}], "version": "2.0.3", "timestamp": "2025-12-03T14:43:59.973715Z"}}}], "providerMetadata": {"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "shortName": "CISA-ADP", "dateUpdated": "2025-12-03T14:44:04.193Z"}}], "cna": {"title": "Everest Backup \u2013 WordPress Cloud Backup, Migration, Restore & Cloning Plugin <= 2.3.8 - Missing Authorization to Unauthenticated Backup Failure", "credits": [{"lang": "en", "type": "finder", "value": "Jonas Benjamin Friedli"}], "metrics": [{"cvssV3_1": {"version": "3.1", "baseScore": 5.3, "baseSeverity": "MEDIUM", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N"}}], "affected": [{"vendor": "everestthemes", "product": "Everest Backup \u2013 WordPress Cloud Backup, Migration, Restore & Cloning Plugin", "versions": [{"status": "affected", "version": "0", "versionType": "semver", "lessThanOrEqual": "2.3.8"}], "defaultStatus": "unaffected"}], "timeline": [{"lang": "en", "time": "2025-09-18T17:25:45.000Z", "value": "Vendor Notified"}, {"lang": "en", "time": "2025-12-02T15:27:08.000Z", "value": "Disclosed"}], "references": [{"url": "https://www.wordfence.com/threat-intel/vulnerabilities/id/f7d7c619-7dc0-47a5-a203-6df4dfa0158b?source=cve"}, {"url": "https://plugins.trac.wordpress.org/changeset?sfp_email=&sfph_mail=&reponame=&old=3400800%40everest-backup&new=3400800%40everest-backup&sfp_email=&sfph_mail="}], "descriptions": [{"lang": "en", "value": "The Everest Backup \u2013 WordPress Cloud Backup, Migration, Restore & Cloning Plugin plugin for WordPress is vulnerable to unauthorized access due to a missing capability check on the process_status_unlink() function in all versions up to, and including, 2.3.8. This makes it possible for unauthenticated attackers to delete the back-up progress files and cause a back-up to fail while it is in progress."}], "problemTypes": [{"descriptions": [{"lang": "en", "type": "CWE", "cweId": "CWE-862", "description": "CWE-862 Missing Authorization"}]}], "providerMetadata": {"orgId": "b15e7b5b-3da4-40ae-a43c-f7aa60e62599", "shortName": "Wordfence", "dateUpdated": "2026-04-08T17:33:49.946Z"}}}, "cveMetadata": {"cveId": "CVE-2025-10304", "state": "PUBLISHED", "dateUpdated": "2026-04-08T17:33:49.946Z", "dateReserved": "2025-09-11T21:54:46.884Z", "assignerOrgId": "b15e7b5b-3da4-40ae-a43c-f7aa60e62599", "datePublished": "2025-12-03T03:27:15.009Z", "assignerShortName": "Wordfence"}, "dataVersion": "5.2"}

{"cveTags": [], "descriptions": [{"lang": "en", "value": "The Everest Backup \u2013 WordPress Cloud Backup, Migration, Restore & Cloning Plugin plugin for WordPress is vulnerable to unauthorized access due to a missing capability check on the process_status_unlink() function in all versions up to, and including, 2.3.8. This makes it possible for unauthenticated attackers to delete the back-up progress files and cause a back-up to fail while it is in progress."}], "id": "CVE-2025-10304", "lastModified": "2026-04-15T00:35:42.020", "metrics": {"cvssMetricV31": [{"cvssData": {"attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "NONE", "baseScore": 5.3, "baseSeverity": "MEDIUM", "confidentialityImpact": "NONE", "integrityImpact": "LOW", "privilegesRequired": "NONE", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N", "version": "3.1"}, "exploitabilityScore": 3.9, "impactScore": 1.4, "source": "security@wordfence.com", "type": "Secondary"}]}, "published": "2025-12-03T04:15:58.613", "references": [{"source": "security@wordfence.com", "url": "https://plugins.trac.wordpress.org/changeset?sfp_email=&sfph_mail=&reponame=&old=3400800%40everest-backup&new=3400800%40everest-backup&sfp_email=&sfph_mail="}, {"source": "security@wordfence.com", "url": "https://www.wordfence.com/threat-intel/vulnerabilities/id/f7d7c619-7dc0-47a5-a203-6df4dfa0158b?source=cve"}], "sourceIdentifier": "security@wordfence.com", "vulnStatus": "Deferred", "weaknesses": [{"description": [{"lang": "en", "value": "CWE-862"}], "source": "security@wordfence.com", "type": "Secondary"}]}

{}

{"analysis": {"en": {"generated_at": "2026-04-21T01:11:14.101684+00:00", "value": {"mitigation_remediation": ["Upgrade Everest Backup plugin to version 2.3.9 or later.", "If an update is unavailable, temporarily disable or uninstall the plugin until a fixed version is released.", "Restrict access to the backup configuration interface to users with administrative privileges only.", "Monitor backup logs for unexpected failures to detect any attempted deletion of progress files."], "summary": {"action": "Apply Patch", "impact": "Backup Failure / Availability Impact"}, "threat_synthesis": {"affected_systems": "All installations of the Everest Backup \u2013 WordPress Cloud Backup, Migration, Restore & Cloning Plugin with versions 2.3.8 and earlier are affected. Site administrators should verify the plugin version and ensure it is not within the vulnerable range.", "description_and_impact": "The vulnerability arises from a missing capability check in the process_status_unlink() method of the Everest Backup plugin, allowing an unauthenticated user to invoke this function and delete the files that track the progress of an ongoing backup. When these files are removed, the backup operation terminates unexpectedly, resulting in a loss of data protection because the backup is never completed and no valid snapshot is produced. This primarily impacts the availability of the backup service for the affected WordPress site.", "risk_and_exploitability": "The CVSS score of 5.3 indicates a medium severity that mainly threatens availability. The EPSS score is less than 1%, showing that the likelihood of exploitation is currently very low, and the vulnerability is not listed in the CISA KEV catalog, implying no publicly known exploits. Because the function lacks an authentication requirement, an attacker can trigger the deletion from any remote source, such as the WordPress REST API or plugin settings pages, without needing administrative credentials. This makes the attack vector horizontal and executable by unauthenticated users."}}}}, "created": "2025-12-04T16:44:35.384395+00:00", "updated": "2026-04-21T01:15:20.134490+00:00", "vendors": ["everestthemes", "everestthemes$PRODUCT$everest_backup", "wordpress", "wordpress$PRODUCT$wordpress"]}