Vulnerability in N/a
CVE-2020-11738
The Snap Creek Duplicator plugin before 1.3.28 for WordPress (and Duplicator Pro before 3.8.7.1) allows Directory Traversal via ../ in the file parameter to duplicator_download or duplicator_init.
EPSS: 0.943 (99.9th percentile) — read the EPSS interpretation.
CVSS v3 metric
CVSS v3 base score 7.5 (High). Vector: CVSS:3.0/AC:L/AV:N/A:N/C:H/I:N/PR:N/S:U/UI:N.
Affected products
- N/a — versions n/a
CISA KEV (Known Exploited Vulnerabilities)
This CVE is on the CISA KEV catalog, added on . CISA KEV inclusion means CISA has confirmed in-the-wild exploitation; US federal agencies are required to remediate within a published due date.
BOD 22-01 due date: .
Required action: Apply updates per vendor instructions.
Public proof-of-concept exploits
References
- snapcreek.com/duplicator/docs/changelog/ (x_refsource_MISC)
- www.wordfence.com/blog/2020/02/active-attack-on-recently-patched-duplicator-plu… (x_refsource_MISC)
- cwe.mitre.org/data/definitions/23.html (x_refsource_MISC)
- packetstormsecurity.com/files/160621/WordPress-Duplicator-1.3.26-Directory-Trav… (x_refsource_MISC)
- packetstormsecurity.com/files/164533/WordPress-Duplicator-1.3.26-Arbitrary-File… (x_refsource_MISC)
Frequently asked questions
- What is CVE-2020-11738?
- CVE-2020-11738 is a high-severity vulnerability in N/a. CVSS score: 7.5/10. Published 2020-04-13.
- How severe is CVE-2020-11738?
- High severity. CVSS v3 base score is 7.5 out of 10.
- Is CVE-2020-11738 known to be exploited?
- Yes. CVE-2020-11738 is listed in the CISA Known Exploited Vulnerabilities catalog (added 2021-11-03), indicating it is being actively exploited. 30 public proof-of-concept repositories are indexed.