Showing 1 - 2 of 2

CVE-2020-11738

Status Candidate

Overview

The Snap Creek Duplicator plugin before 1.3.28 for WordPress (and Duplicator Pro before 3.8.7.1) allows Directory Traversal via ../ in the file parameter to duplicator_download or duplicator_init.

Related Files

WordPress Duplicator 1.3.26 Arbitrary File Read: Posted Oct 18, 2021; Authored by nam3lum; WordPress Duplicator plugin version 1.3.26 suffers from an unauthenticated arbitrary file read vulnerability.; tags | exploit, arbitrary; advisories | CVE-2020-11738; SHA-256 | 1383137efd7098a45bbbd9bc17c62eb574f42061cee8906bc359dc7a056a140a; Download | Favorite | View

WordPress Duplicator 1.3.26 Directory Traversal / File Read: Posted Dec 18, 2020; Authored by Hoa Nguyen, Ramuel Gall | Site metasploit.com; This Metasploit module exploits an unauthenticated directory traversal vulnerability in WordPress Duplicator plugin versions 1.3.24 through 1.3.26, allowing arbitrary file read with the web server privileges. This vulnerability was being actively exploited when it was discovered.; tags | exploit, web, arbitrary, file inclusion; advisories | CVE-2020-11738; SHA-256 | 4ea50cf867ab79c361dd72e12949f0f0d61e20bd60dd59c1e49252679fd3c7a8; Download | Favorite | View

Page 1 of 1 Back 1 Next

Top Authors In Last 30 Days

Red Hat 234 files
indoushka 93 files
Ubuntu 87 files
Gentoo 36 files
Jasper Nota 25 files
Debian 21 files
Willem Westerhof 19 files
Jim Blankendaal 11 files
Apple 9 files
Martijn Baalman 9 files

File Archives

Systems

AIX (429)
Apple (2,099)
BSD (377)
CentOS (58)
Cisco (1,927)
Debian (7,099)
Fedora (1,693)
FreeBSD (1,246)
Gentoo (4,567)
HPUX (880)
iOS (378)
iPhone (108)
IRIX (220)
Juniper (69)
Linux (50,756)
Mac OS X (691)
Mandriva (3,105)
NetBSD (256)
OpenBSD (489)
RedHat (16,521)
Slackware (941)
Solaris (1,611)
SUSE (1,444)
Ubuntu (9,747)
UNIX (9,436)
UnixWare (187)
Windows (6,674)
Other

CVE-2020-11738

Overview

Related Files

File Archive:

August 2024

Top Authors In Last 30 Days

File Tags

File Archives

Systems