CVE-2020-11738

Warnung

Exploit

EPSS 94.18%
Veröffentlicht 13.04.2020 22:15:10
Zuletzt bearbeitet 02.02.2026 15:06:20
Quelle cve@mitre.org
CVE-Watchlists
Login
Unerledigt
Login

Duplicator < 1.3.28 - Directory Traversal

The Snap Creek Duplicator plugin before 1.3.28 for WordPress (and Duplicator Pro before 3.8.7.1) allows Directory Traversal via ../ in the file parameter to duplicator_download or duplicator_init.

Mögliche Gegenmaßnahme

Duplicator – Backups & Migration Plugin – Cloud Backups, Scheduled Backups, & More: Update to version 1.3.28, or a newer patched version

Duplicator Pro: Update to version 3.8.7.1, or a newer patched version

Betroffene Produkte Warnungen 1 Metriken 4 CWE 1 Referenzen 10

Weitere Schwachstelleninformationen

SystemWordPress Plugin

≫

Produkt Duplicator – Backups & Migration Plugin – Cloud Backups, Scheduled Backups, & More

Version [*, 1.3.28)

SystemWordPress Plugin

≫

Produkt Duplicator Pro

Version [*, 3.8.7.1)

Daten sind bereitgestellt durch National Vulnerability Database (NVD)

Awesomemotive ≫ Duplicator SwEditionlite SwPlatformwordpress Version < 1.3.28

Awesomemotive ≫ Duplicator SwEditionpro SwPlatformwordpress Version < 3.8.7.1

03.11.2021: CISA Known Exploited Vulnerabilities (KEV) Catalog

WordPress Snap Creek Duplicator Plugin File Download Vulnerability

Schwachstelle

WordPress Snap Creek Duplicator plugin contains a file download vulnerability when an administrator creates a new copy of their site that allows an attacker to download the generated files from their Wordpress dashboard. This vulnerability affects Duplicator and Dulplicator Pro.

Beschreibung

Apply updates per vendor instructions.

Erforderliche Maßnahmen

EPSS Metriken
Typ	Quelle	Score	Percentile
EPSS	FIRST.org	94.18%	0.999

CVSS Metriken
Quelle	Base Score	Exploit Score	Impact Score	Vector String
nvd@nist.gov	7.5	3.9	3.6	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
nvd@nist.gov	5	10	2.9	AV:N/AC:L/Au:N/C:P/I:N/A:N
cve@mitre.org	7.5	3.9	3.6	CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

CWE-22 Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal')

The product uses external input to construct a pathname that is intended to identify a file or directory that is located underneath a restricted parent directory, but the product does not properly neutralize special elements within the pathname that can cause the pathname to resolve to a location that is outside of the restricted directory.

https://snapcreek.com/duplicator/docs/changelog/?lite

Vendor Advisory

Release Notes

http://packetstormsecurity.com/files/160621/WordPress-Duplicator-1.3.26-Directory-Traversal-File-Read.html

Third Party Advisory

Exploit

VDB Entry

http://packetstormsecurity.com/files/164533/WordPress-Duplicator-1.3.26-Arbitrary-File-Read.html

Third Party Advisory

Exploit

VDB Entry

https://cwe.mitre.org/data/definitions/23.html