Lucene search
WpvulndbWPVDB-ID:35227C3A-E893-4C68-8CB6-FFE79115FB6DHistoryFeb 19, 2020 - 12:00 a.m.
Duplicator 1.3.24 & 1.3.26 - Unauthenticated Arbitrary File Download
2020-02-1900:00:00
wpscan.com
20
The issue is being actively exploited, and allows attackers to download arbitrary files, such as the wp-config.php file. According to the vendor, the vulnerability was only in two versions v1.3.24 and v1.3.26, the vulnerability wasn’t present in versions 1.3.22 and before.
PoC
http://www.example.com/wp-admin/admin-ajax.php?action=duplicator_download&file;=../wp-config.php
| CPE | Name | Operator | Version |
|---|---|---|---|
| duplicator | lt | 1.3.28 | |
| duplicator-pro | lt | 3.8.7.1 |
Related
wpexploit
wpexploit
Duplicator 1.3.24 & 1.3.26 - Unauthenticated Arbitrary File Download
2020-02-19 00:00:00
prion
prion
Directory traversal
2020-04-13 22:15:00
attackerkb
attackerkb
CVE-2020-11738
2020-04-13 00:00:00
nessus
nessus
WordPress Plugin 'Duplicator' Directory Traversal (CVE-2020-11738)
2020-09-02 00:00:00
dsquare
dsquare
WordPress Duplicator < 1.3.28 Directory Traversal
2021-03-08 00:00:00
hackerone
hackerone
Mail.ru: "blog.skillfactory.ru" Vulnerable to Directory Traversal
2020-10-28 15:57:54
cisa_kev
cisa_kev
WordPress Snap Creek Duplicator Plugin File Download Vulnerability
2021-11-03 00:00:00
cve
cve
CVE-2020-11738
2020-04-13 22:15:00
nuclei
nuclei
WordPress Duplicator 1.3.24 & 1.3.26 - Local File Inclusion
2020-12-12 05:03:34
packetstorm
packetstorm
WordPress Duplicator 1.3.26 Arbitrary File Read
2021-10-18 00:00:00
WordPress Duplicator 1.3.26 Directory Traversal / File Read
2020-12-18 00:00:00
zdt
zdt
exploitdb
exploitdb
Wordpress Plugin Duplicator 1.3.26 - Unauthenticated Arbitrary File Read
2021-10-18 00:00:00
rapid7blog
rapid7blog
Metasploit Wrap-Up
2021-01-08 19:54:36
openvas
openvas
qualysblog
qualysblog
Managing CISA Known Exploited Vulnerabilities with Qualys VMDR
2022-02-23 05:39:00
Related for WPVDB-ID:35227C3A-E893-4C68-8CB6-FFE79115FB6D