Lucene search
K

434 matches found

RedhatCVE
RedhatCVE
added 2025/05/22 12:46 p.m.8 views

CVE-2018-17207

An issue was discovered in Snap Creek Duplicator before 1.2.42. By accessing leftover installer files installer.php and installer-backup.php, an attacker can inject PHP code into wp-config.php during the database setup step, achieving arbitrary code execution...

9.8CVSS7.3AI score0.58794EPSS
Exploits4References1
RedhatCVE
RedhatCVE
added 2025/05/22 6:50 a.m.5 views

CVE-2016-10944

The multisite-post-duplicator plugin before 1.1.3 for WordPress has wp-admin/tools.php?page=mpd CSRF...

8.8CVSS7.1AI score0.00732EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2025/05/22 5:40 a.m.6 views

CVE-2017-16815

installer.php in the Snap Creek Duplicator WordPress Site Migration & Backup plugin before 1.2.30 for WordPress has XSS because the values "urlnew" /wp-content/plugins/duplicator/installer/build/view.step4.php and "logging" wp-content/plugins/duplicator/installer/build/view.step2.php are not...

6.1CVSS6.2AI score0.01017EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/22 3:26 a.m.9 views

CVE-2018-25095

The Duplicator WordPress plugin before 1.3.0 does not properly escape values when its installer script replaces values in WordPress configuration files. If this installer script is left on the site after use, it could be use to run arbitrary code on the server...

9.8CVSS7.1AI score0.00916EPSS
Exploits2References1
RedhatCVE
RedhatCVE
added 2025/04/25 11:57 p.m.6 views

CVE-2025-27283

Improper Limitation of a Pathname to a Restricted Directory 'Path Traversal' vulnerability in rockgod100 Theme File Duplicator theme-file-duplicator allows Path Traversal.This issue affects Theme File Duplicator: from n/a through = 1.3...

6.5CVSS7.2AI score0.00467EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/04/25 4:45 p.m.10 views

CVE-2025-27282

Unrestricted Upload of File with Dangerous Type vulnerability in rockgod100 Theme File Duplicator theme-file-duplicator allows Using Malicious Files.This issue affects Theme File Duplicator: from n/a through = 1.3...

9.9CVSS7.2AI score0.00467EPSS
Exploits0References1
NVD
NVD
added 2025/04/17 4:15 p.m.12 views

CVE-2025-27282

Unrestricted Upload of File with Dangerous Type vulnerability in rockgod100 Theme File Duplicator theme-file-duplicator allows Using Malicious Files.This issue affects Theme File Duplicator: from n/a through = 1.3...

9.9CVSS0.00467EPSS
Exploits0References1
NVD
NVD
added 2025/04/17 4:15 p.m.4 views

CVE-2025-27283

Improper Limitation of a Pathname to a Restricted Directory 'Path Traversal' vulnerability in rockgod100 Theme File Duplicator theme-file-duplicator allows Path Traversal.This issue affects Theme File Duplicator: from n/a through = 1.3...

6.5CVSS0.00467EPSS
Exploits0References1
Cvelist
Cvelist
added 2025/04/17 3:48 p.m.25 views

CVE-2025-27282 WordPress Theme File Duplicator Plugin <= 1.3 - Arbitrary File Upload vulnerability

Unrestricted Upload of File with Dangerous Type vulnerability in rockgod100 Theme File Duplicator theme-file-duplicator allows Using Malicious Files.This issue affects Theme File Duplicator: from n/a through = 1.3...

9.9CVSS0.00467EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2025/04/17 3:48 p.m.28 views

CVE-2025-27282 WordPress Theme File Duplicator Plugin <= 1.3 - Arbitrary File Upload vulnerability

Unrestricted Upload of File with Dangerous Type vulnerability in rockgod100 Theme File Duplicator theme-file-duplicator allows Using Malicious Files.This issue affects Theme File Duplicator: from n/a through = 1.3...

9.9CVSS8.6AI score0.00467EPSS
Exploits0References1
CVE
CVE
added 2025/04/17 3:48 p.m.56 views

CVE-2025-27282

CVE-2025-27282 : WordPress plugin Theme File Duplicator (rockgod100)

9.9CVSS7.2AI score0.00467EPSS
Exploits0References1
Cvelist
Cvelist
added 2025/04/17 3:48 p.m.11 views

CVE-2025-27283 WordPress Theme File Duplicator Plugin <= 1.3 - Arbitrary File Download vulnerability

Improper Limitation of a Pathname to a Restricted Directory 'Path Traversal' vulnerability in rockgod100 Theme File Duplicator theme-file-duplicator allows Path Traversal.This issue affects Theme File Duplicator: from n/a through = 1.3...

6.5CVSS0.00467EPSS
Exploits0References1
CVE
CVE
added 2025/04/17 3:48 p.m.39 views

CVE-2025-27283

CVE-2025-27283 affects the WordPress plugin Theme File Duplicator (rockgod100 Theme File Duplicator). The issue is due to an improper limitation of a pathname to a restricted directory, enabling path traversal and an Arbitrary File Download vulnerability in Theme File Duplicator versions 1.3 and ...

6.5CVSS7.2AI score0.00467EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2025/04/17 3:48 p.m.7 views

CVE-2025-27283 WordPress Theme File Duplicator Plugin <= 1.3 - Arbitrary File Download vulnerability

Improper Limitation of a Pathname to a Restricted Directory 'Path Traversal' vulnerability in rockgod100 Theme File Duplicator theme-file-duplicator allows Path Traversal.This issue affects Theme File Duplicator: from n/a through = 1.3...

6.5CVSS8.6AI score0.00467EPSS
Exploits0References1
CNNVD
CNNVD
added 2025/04/17 12:0 a.m.2 views

WordPress plugin Theme File Duplicator 路径遍历漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports personal blog sites on PHP and MySQL servers.WordPress plugin is an application plugin. A path traversal vulnerability exists in...

6.5CVSS8.7AI score0.00467EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2025/04/17 12:0 a.m.3 views

PT-2025-17050 · Unknown · Theme File Duplicator

Name of the Vulnerable Software and Affected Versions: Theme File Duplicator versions 1.3 and earlier Description: The issue is related to an Improper Limitation of a Pathname to a Restricted Directory, also known as 'Path Traversal'. This allows an attacker to traverse the file system and access...

6.5CVSS9.1AI score0.00467EPSS
Exploits0References3
CNNVD
CNNVD
added 2025/04/17 12:0 a.m.24 views

WordPress plugin Theme File Duplicator 代码问题漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports personal blog sites on PHP and MySQL servers.WordPress plugin is an application plugin. A code issue vulnerability exists in...

9.9CVSS8.9AI score0.00467EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2025/04/17 12:0 a.m.7 views

PT-2025-17049 · Unknown · Theme File Duplicator

Name of the Vulnerable Software and Affected Versions: Theme File Duplicator versions 1.3 and earlier Description: The issue allows for the unrestricted upload of files with dangerous types, enabling the use of malicious files. Recommendations: For Theme File Duplicator versions 1.3 and earlier,...

9.9CVSS9.4AI score0.00467EPSS
Exploits0References4
RedhatCVE
RedhatCVE
added 2025/04/13 9:16 a.m.17 views

CVE-2025-32538

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in dev02ali Easy Post Duplicator easy-post-duplicator allows Reflected XSS.This issue affects Easy Post Duplicator: from n/a through = 1.0.1...

7.1CVSS7.2AI score0.00374EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/04/13 9:2 a.m.8 views

CVE-2025-32567

Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in dev02ali Easy Post Duplicator easy-post-duplicator allows SQL Injection.This issue affects Easy Post Duplicator: from n/a through = 1.0.1...

8.5CVSS7.3AI score0.0043EPSS
Exploits0References1
Rows per page
Query Builder