#VU30308 Path traversal in SnapCreek Duplicator - CVE-2020-11738

Cybersecurity Help s.r.o.

Published: 2020-04-14 | Updated: 2024-06-21

Vulnerability identifier: #VU30308

Vulnerability risk: Medium

CVSSv4.0: 8.7 [CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N/E:A/U:Green]

CVE-ID: CVE-2020-11738

CWE-ID: CWE-22

Exploitation vector: Network

Exploit availability: Yes

Vulnerable software:
SnapCreek Duplicator
Web applications / Modules and components for CMS

Vendor: SnapCreek

Description

The vulnerability allows a remote attacker to perform directory traversal attacks.

The vulnerability exists due to insufficient sanitization of user-supplied passed via . A remote attacker can send a specially crafted HTTP request containing directory traversal sequences and read contents of arbitrary files on the system.

Mitigation
Update to version 1.3.28.

Vulnerable software versions

SnapCreek Duplicator: 1.3.0 - 1.3.26

External links
https://snapcreek.com/duplicator/docs/changelog/?lite
https://www.wordfence.com/blog/2020/02/active-attack-on-recently-patched-duplicator-plugin-vulnerability-affects-over-1-million-sites/

Q & A

Can this vulnerability be exploited remotely?

Yes. This vulnerability can be exploited by a remote non-authenticated attacker via the Internet.

Is there known malware, which exploits this vulnerability?

Yes. This vulnerability is being exploited in the wild.

Latest bulletins with this vulnerability

Path traversal in SnapCreek Duplicator