THREATOPS
THREAT OPSCVEs › CVE-2020-11738

CVE-2020-11738 — WordPress Snap Creek Duplicator Plugin File Download Vulnerability

CISA KEVExploited: confirmedWordPress

WordPress Snap Creek Duplicator plugin contains a file download vulnerability when an administrator creates a new copy of their site that allows an attacker to download the generated files from their Wordpress dashboard. This vulnerability affects Duplicator and Dulplicator Pro.

Vulnerability details