Duplicator
Sign in to watchby Snapcreek
CVEs (2)
| CVE | Sev | Risk | CVSS | EPSS | KEV | Published | Description |
|---|---|---|---|---|---|---|---|
| CVE-2014-9262 | Hig | 0.57 | 8.2 | 0.07 | Aug 7, 2017 | The Duplicator plugin in Wordpress before 0.5.10 allows remote authenticated users to create and download backup files. | |
| CVE-2017-16815 | Med | 0.40 | 6.1 | 0.00 | Nov 14, 2017 | installer.php in the Snap Creek Duplicator (WordPress Site Migration & Backup) plugin before 1.2.30 for WordPress has XSS because the values "url_new" (/wp-content/plugins/duplicator/installer/build/view.step4.php) and "logging" (wp-content/plugins/duplicator/installer/build/view.step2.php) are not filtered correctly. |