Description
The BeeTeam368 Extensions Pro plugin for WordPress is vulnerable to Directory Traversal in all versions up to, and including, 2.3.4 via the handle_live_fn() function. This makes it possible for authenticated attackers, with Subscriber-level access and above, to perform actions on files outside of the originally intended directory. This vulnerability can be used to delete the wp-config.php file, which can be leveraged into a site takeover.
Published: 2025-06-28
Score: 8.8 High
EPSS: < 1% Very Low
KEV: No
Impact: Unauthorized deletion of wp-config.php via authenticated directory traversal
Action: Patch
AI Analysis

Impact

The BeeTeam368 Extensions Pro plugin for WordPress contains a directory traversal flaw in its handle_live_fn() routine. An attacker who can authenticate to the site with a Subscriber level role or higher can reference files outside the plugin’s intended directory. This allows deletion of critical WordPress files, most notably wp-config.php, which could facilitate further compromise of the site. The weakness aligns with CWE‑22, a classic directory traversal error.

Affected Systems

BeeTeam368’s BeeTeam368 Extensions Pro plugin for WordPress is affected in all releases up to version 2.3.4. Any WordPress site that has not upgraded beyond 2.3.4 is vulnerable.

Risk and Exploitability

The CVSS score of 8.8 classifies this flaw as high severity, indicating significant potential impact. The EPSS score of less than 1% suggests current exploitation activity is low, and the vulnerability is not listed in CISA’s KEV catalog. Because the attacker only needs a legitimate Subscriber‑level account, many sites could be exposed. The typical attack vector is via authenticated access to the plugin’s live function, assuming the user role has permission to trigger handle_live_fn.

Generated by OpenCVE AI on April 22, 2026 at 17:11 UTC.

Remediation

No vendor fix or workaround currently provided.

OpenCVE Recommended Actions

  • Update BeeTeam368 Extensions Pro to a version newer than 2.3.4 or uninstall the plugin if no update is available.
  • Remove or restrict the handle_live_fn() capability from Subscriber and higher roles so that authenticated users cannot trigger directory traversal operations.
  • Deploy a web application firewall or implement file integrity monitoring to detect and block unexpected file deletions or directory traversal attempts.

Generated by OpenCVE AI on April 22, 2026 at 17:11 UTC.

Tracking

Sign in to view the affected projects.

Advisories
Source ID Title
EUVD EUVD EUVD-2025-28732 The BeeTeam368 Extensions Pro plugin for WordPress is vulnerable to Directory Traversal in all versions up to, and including, 2.3.4 via the handle_live_fn() function. This makes it possible for authenticated attackers, with Subscriber-level access and above, to perform actions on files outside of the originally intended directory. This vulnerability can be used to delete the wp-config.php file, which can be leveraged into a site takeover.
History

Mon, 07 Jul 2025 15:45:00 +0000

Type Values Removed Values Added
First Time appeared Beeteam368
Beeteam368 vidmov
CPEs cpe:2.3:a:beeteam368:vidmov:*:*:*:*:*:wordpress:*:*
Vendors & Products Beeteam368
Beeteam368 vidmov

Mon, 30 Jun 2025 17:15:00 +0000

Type Values Removed Values Added
Metrics ssvc

{'options': {'Automatable': 'no', 'Exploitation': 'none', 'Technical Impact': 'total'}, 'version': '2.0.3'}

Sat, 28 Jun 2025 03:30:00 +0000

Type Values Removed Values Added
Description The BeeTeam368 Extensions Pro plugin for WordPress is vulnerable to Directory Traversal in all versions up to, and including, 2.3.4 via the handle_live_fn() function. This makes it possible for authenticated attackers, with Subscriber-level access and above, to perform actions on files outside of the originally intended directory. This vulnerability can be used to delete the wp-config.php file, which can be leveraged into a site takeover.
Title BeeTeam368 Extensions Pro <= 2.3.4 - Authenticated (Subscriber+) Directory Traversal to Arbitrary File Deletion
Weaknesses CWE-22
References
Metrics cvssV3_1

{'score': 8.8, 'vector': 'CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H'}

Subscriptions

Beeteam368 Vidmov
Wordpress Wordpress
cve-icon MITRE

Status: PUBLISHED

Assigner: Wordfence

Published:

Updated: 2026-04-08T16:42:46.899Z

Reserved: 2025-06-19T18:20:23.278Z

Link: CVE-2025-6379

cve-icon Vulnrichment

Updated: 2025-06-30T16:19:58.489Z

cve-icon NVD

Status : Analyzed

Published: 2025-06-28T04:15:45.700

Modified: 2025-07-07T15:24:31.510

Link: CVE-2025-6379

cve-icon Redhat

No data.

cve-icon OpenCVE Enrichment

Updated: 2026-04-22T17:15:22Z

Weaknesses