Attacker Value
Moderate
(1 user assessed)
Exploitability
High
(1 user assessed)
User Interaction
Unknown
Privileges Required
Unknown
Attack Vector
Unknown
0

Snap Creek Duplicator RCE

Disclosure Date: September 19, 2018 Last updated February 13, 2020
Add MITRE ATT&CK tactics and techniques that apply to this CVE.

Description

The Snap Creek Duplicator plugin for Wordpress enables the possibility for code execution after a backup has been created. This affects versions prior to v1.2.42.

Add Assessment

1
Ratings
  • Attacker Value
    Medium
  • Exploitability
    High
Technical Analysis

Details

With over 1 million installations of this plugin in Wordpress, this vulnerability is valuable to exploit.

General Information

Additional Info

Technical Analysis