{"id":78540,"date":"2026-05-16T19:46:23","date_gmt":"2026-05-16T16:16:23","guid":{"rendered":"https:\/\/afaghhosting.net\/blog\/cve-2021-47979-wordpress-plugin-backup-and-restore-1-0-3-arbitrary-file-deletion\/"},"modified":"2026-05-16T19:46:23","modified_gmt":"2026-05-16T16:16:23","slug":"cve-2021-47979-wordpress-plugin-backup-and-restore-1-0-3-arbitrary-file-deletion","status":"publish","type":"post","link":"https:\/\/afaghhosting.net\/blog\/cve-2021-47979-wordpress-plugin-backup-and-restore-1-0-3-arbitrary-file-deletion\/","title":{"rendered":"CVE-2021-47979 &#8211; WordPress Plugin Backup and Restore 1.0.3 Arbitrary File Deletion"},"content":{"rendered":"<p>CVE ID :CVE-2021-47979<\/p>\n<p>  Published : May 16, 2026, 4:16 p.m. | 2\u00a0hours, 41\u00a0minutes ago<\/p>\n<p>  Description :WordPress Plugin Backup and Restore 1.0.3 contains an arbitrary file deletion vulnerability that allows authenticated attackers to delete files by manipulating parameters in AJAX requests. Attackers can send POST requests to admin-ajax.php with crafted file_name and folder_name parameters to delete arbitrary files from the WordPress installation directory.<\/p>\n<p>  Severity: 8.8 | HIGH<\/p>\n<p>  Visit the link for more details, such as CVSS details, affected products, timeline, and more&#8230;\u00a0<\/p>\n","protected":false},"excerpt":{"rendered":"<p>CVE ID :CVE-2021-47979 Published : May 16, 2026, 4:16 p.m. | 2\u00a0hours, 41\u00a0minutes ago Description :WordPress Plugin Backup and Restore 1.0.3 contains an arbitrary file deletion vulnerability that allows authenticated attackers to delete files by manipulating parameters in AJAX requests. Attackers can send POST requests to admin-ajax.php with crafted file_name and folder_name parameters to delete &hellip;<\/p>\n","protected":false},"author":1,"featured_media":0,"comment_status":"closed","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[26],"tags":[],"class_list":["post-78540","post","type-post","status-publish","format-standard","hentry","category-vulnerability"],"_links":{"self":[{"href":"https:\/\/afaghhosting.net\/blog\/wp-json\/wp\/v2\/posts\/78540","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/afaghhosting.net\/blog\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/afaghhosting.net\/blog\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/afaghhosting.net\/blog\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/afaghhosting.net\/blog\/wp-json\/wp\/v2\/comments?post=78540"}],"version-history":[{"count":0,"href":"https:\/\/afaghhosting.net\/blog\/wp-json\/wp\/v2\/posts\/78540\/revisions"}],"wp:attachment":[{"href":"https:\/\/afaghhosting.net\/blog\/wp-json\/wp\/v2\/media?parent=78540"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/afaghhosting.net\/blog\/wp-json\/wp\/v2\/categories?post=78540"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/afaghhosting.net\/blog\/wp-json\/wp\/v2\/tags?post=78540"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}