Vulnerability Description
The BFG Tools – Extension Zipper plugin for WordPress is vulnerable to Path Traversal in all versions up to, and including, 1.0.7. This is due to insufficient input validation on the user-supplied `first_file` parameter in the `zip()` function. This makes it possible for authenticated attackers, with Administrator-level access and above, to read the contents of arbitrary files and directories outside the intended `/wp-content/plugins/` directory, which can contain sensitive information such as wp-config.php.
CVSS Score
MEDIUM
Related Weaknesses (CWE)
References
- https://plugins.trac.wordpress.org/browser/bfg-tools-extension-zipper/tags/1.0.7
- https://plugins.trac.wordpress.org/browser/bfg-tools-extension-zipper/trunk/bfg-
- https://plugins.trac.wordpress.org/changeset?sfp_email=&sfph_mail=&reponame=&old
- https://www.wordfence.com/threat-intel/vulnerabilities/id/5bd95df9-4355-4d57-ba4
FAQ
What is CVE-2025-13681?
CVE-2025-13681 is a vulnerability with a CVSS score of 4.9 (MEDIUM). The BFG Tools – Extension Zipper plugin for WordPress is vulnerable to Path Traversal in all versions up to, and including, 1.0.7. This is due to insufficient input validation on the user-supplied `fi...
How severe is CVE-2025-13681?
CVE-2025-13681 has been rated MEDIUM with a CVSS base score of 4.9/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2025-13681?
Check the references section above for vendor advisories and patch information. Review vendor security bulletins for remediation guidance.